User interfaces for authenticating to perform secure operations

ABSTRACT

The present disclosure generally relates to methods and user interfaces for authentication, including providing authentication at a computer system in accordance with some embodiments.

CROSS-REFERENCE TO RELATED APPLICATIONS

This application claims priority to U.S. Provisional Patent ApplicationSer. No. 63/186,694, entitled “USER INTERFACES FOR AUTHENTICATING TOPERFORM SECURE OPERATIONS,” filed on May 10, 2021, the contents of whichis hereby incorporated by reference in its entirety.

FIELD

The present disclosure generally relates to authentication and, morespecifically, to computer user interfaces and techniques for providingone or more alternative authentication methods after a firstauthentication method (e.g., biometric authentication) is unsuccessful.

BACKGROUND

Biometric authentication, for instance, of a face, iris, or fingerprint,using electronic devices is a convenient, efficient, and secure methodof authenticating users of electronic devices. Biometric authenticationallows a device to quickly, easily, and securely verify the identity ofany number of users.

BRIEF SUMMARY

Some techniques for implementing authentication using computer systems(e.g., electronic computing devices), however, are generally cumbersomeand inefficient. For example, some existing techniques use a complex andtime-consuming user interface, which may include multiple key presses orkeystrokes. Existing techniques require more time than necessary,wasting user time and device energy. This latter consideration isparticularly important in battery-operated devices.

Accordingly, the present technique provides electronic devices withfaster, more efficient methods and interfaces for implementingauthentication. Such methods and interfaces optionally complement orreplace other methods for implementing authentication. Such methods andinterfaces reduce the cognitive burden on a user and produce a moreefficient human-machine interface. For battery-operated computingdevices, such methods and interfaces conserve power and increase thetime between battery charges.

In accordance with some embodiments, a method performed at a computersystem that is in communication with one or more biometric sensors, oneor more input devices, and an external accessory device is described.The method comprises receiving, via the one or more input devices, arequest to unlock the computer system while the computer system is in alocked state; in response to receiving the request to unlock thecomputer system: in accordance with a determination that a first set ofbiometric identification criteria is satisfied, wherein the first set ofbiometric identification criteria is satisfied when a detected biometricfeature detected in conjunction with the request to unlock the computersystem is consistent with an enrolled biometric feature, transitioningthe computer system from the locked state to an unlocked state; and inaccordance with a determination that a second set of biometricidentification criteria is satisfied without satisfying the first set ofbiometric identification criteria, wherein the second set of biometricidentification criteria is satisfied when the detected biometric featuredetected in conjunction with the request to unlock the computer systemis partially consistent with an enrolled biometric feature, causing anoutput of a prompt that indicates that one or more interactions with theexternal accessory device can be used to unlock the computer system; andafter causing the output of the prompt: in accordance with adetermination that the one or more interactions with the externalaccessory device have been detected, transitioning the computer systemfrom the locked state to the unlocked state; and in accordance with adetermination that the one or more interactions with the externalaccessory device have not been detected, maintaining the computer systemin the locked state.

In accordance with some embodiments, a non-transitory computer-readablestorage medium is described. The non-transitory computer-readablestorage medium stores one or more programs configured to be executed byone or more processors of a computer system that is in communicationwith one or more biometric sensors, one or more input devices, and anexternal accessory device, the one or more programs includinginstructions for: receiving, via the one or more input devices, arequest to unlock the computer system while the computer system is in alocked state; in response to receiving the request to unlock thecomputer system: in accordance with a determination that a first set ofbiometric identification criteria is satisfied, wherein the first set ofbiometric identification criteria is satisfied when a detected biometricfeature detected in conjunction with the request to unlock the computersystem is consistent with an enrolled biometric feature, transitioningthe computer system from the locked state to an unlocked state; and inaccordance with a determination that a second set of biometricidentification criteria is satisfied without satisfying the first set ofbiometric identification criteria, wherein the second set of biometricidentification criteria is satisfied when the detected biometric featuredetected in conjunction with the request to unlock the computer systemis partially consistent with an enrolled biometric feature, causing anoutput of a prompt that indicates that one or more interactions with theexternal accessory device can be used to unlock the computer system; andafter causing the output of the prompt: in accordance with adetermination that the one or more interactions with the externalaccessory device have been detected, transitioning the computer systemfrom the locked state to the unlocked state; and in accordance with adetermination that the one or more interactions with the externalaccessory device have not been detected, maintaining the computer systemin the locked state.

In accordance with some embodiments, a transitory computer-readablestorage medium is described. The transitory computer-readable storagemedium stores one or more programs configured to be executed by one ormore processors of a computer system that is in communication with oneor more biometric sensors, one or more input devices, and an externalaccessory device, the one or more programs including instructions for:receiving, via the one or more input devices, a request to unlock thecomputer system while the computer system is in a locked state; inresponse to receiving the request to unlock the computer system: inaccordance with a determination that a first set of biometricidentification criteria is satisfied, wherein the first set of biometricidentification criteria is satisfied when a detected biometric featuredetected in conjunction with the request to unlock the computer systemis consistent with an enrolled biometric feature, transitioning thecomputer system from the locked state to an unlocked state; and inaccordance with a determination that a second set of biometricidentification criteria is satisfied without satisfying the first set ofbiometric identification criteria, wherein the second set of biometricidentification criteria is satisfied when the detected biometric featuredetected in conjunction with the request to unlock the computer systemis partially consistent with an enrolled biometric feature, causing anoutput of a prompt that indicates that one or more interactions with theexternal accessory device can be used to unlock the computer system; andafter causing the output of the prompt: in accordance with adetermination that the one or more interactions with the externalaccessory device have been detected, transitioning the computer systemfrom the locked state to the unlocked state; and in accordance with adetermination that the one or more interactions with the externalaccessory device have not been detected, maintaining the computer systemin the locked state.

In accordance with some embodiments, a computer system is described. Thecomputer system is in communication with one or more biometric sensors,one or more input devices, an external accessory device; and memorystoring one or more programs configured to be executed by the one ormore processors, the one or more programs including instructions for:receiving, via the one or more input devices, a request to unlock thecomputer system while the computer system is in a locked state; inresponse to receiving the request to unlock the computer system: inaccordance with a determination that a first set of biometricidentification criteria is satisfied, wherein the first set of biometricidentification criteria is satisfied when a detected biometric featuredetected in conjunction with the request to unlock the computer systemis consistent with an enrolled biometric feature, transitioning thecomputer system from the locked state to an unlocked state; and inaccordance with a determination that a second set of biometricidentification criteria is satisfied without satisfying the first set ofbiometric identification criteria, wherein the second set of biometricidentification criteria is satisfied when the detected biometric featuredetected in conjunction with the request to unlock the computer systemis partially consistent with an enrolled biometric feature, causing anoutput of a prompt that indicates that one or more interactions with theexternal accessory device can be used to unlock the computer system; andafter causing the output of the prompt: in accordance with adetermination that the one or more interactions with the externalaccessory device have been detected, transitioning the computer systemfrom the locked state to the unlocked state; and in accordance with adetermination that the one or more interactions with the externalaccessory device have not been detected, maintaining the computer systemin the locked state.

In accordance with some embodiments, a computer system is described. Thecomputer system is in communication with: one or more biometric sensors;one or more input devices; and an external accessory device isdescribed. The computer system comprises: means for receiving, via theone or more input devices, a request to unlock the computer system whilethe computer system is in a locked state: means, responsive to receivingthe request to unlock the computer system, for: in accordance with adetermination that a first set of biometric identification criteria issatisfied, wherein the first set of biometric identification criteria issatisfied when a detected biometric feature detected in conjunction withthe request to unlock the computer system is consistent with an enrolledbiometric feature, transitioning the computer system from the lockedstate to an unlocked state; and in accordance with a determination thata second set of biometric identification criteria is satisfied withoutsatisfying the first set of biometric identification criteria, whereinthe second set of biometric identification criteria is satisfied whenthe detected biometric feature detected in conjunction with the requestto unlock the computer system is partially consistent with an enrolledbiometric feature, causing an output of a prompt that indicates that oneor more interactions with the external accessory device can be used tounlock the computer system; and means, after causing the output of theprompt, for: in accordance with a determination that the one or moreinteractions with the external accessory device have been detected,transitioning the computer system from the locked state to the unlockedstate; and in accordance with a determination that the one or moreinteractions with the external accessory device have not been detected,maintaining the computer system in the locked state.

In accordance with some embodiments, a method performed at a computersystem that is in communication with one or more biometric sensors andone or more input devices that include a voice input device isdescribed. The method comprises receiving, via the one or more inputdevices, a request to unlock the computer system while the computersystem is in a locked state; in response to receiving the request tounlock the computer system: in accordance with a determination that afirst set of biometric identification criteria is satisfied, wherein thefirst set of biometric identification criteria is satisfied when adetected biometric feature detected in conjunction with the request tounlock the computer system is consistent with an enrolled biometricfeature, transitioning the computer system from the locked state to anunlocked state; and in accordance with a determination that a second setof biometric identification criteria is satisfied without satisfying thefirst set of biometric identification criteria, wherein the second setof biometric identification criteria is satisfied when the detectedbiometric feature detected in conjunction with the request to unlock thecomputer system is partially consistent with an enrolled biometricfeature, causing an output of a prompt that indicates that voice inputis required to unlock the computer system; after causing the output ofthe prompt, receiving, via the voice input device, an indication thatvoice input has been detected; and in response to receiving theindication that voice input has been detected: in accordance with adetermination that the detected voice input matches an authorized voiceprofile, transitioning the computer system from the locked state to theunlocked state; and in accordance with a determination that the detectedvoice input does not match the authorized voice profile, maintaining thecomputer system in the locked state.

In accordance with some embodiments, a non-transitory computer-readablestorage medium is described. The non-transitory computer readablestorage medium stores one or more programs configured to be executed byone or more processors of a computer system that is in communicationwith one or more biometric sensors, one or more input devices thatinclude a voice input device, the one or more programs includinginstructions for: receiving, via the one or more input devices, arequest to unlock the computer system while the computer system is in alocked state; in response to receiving the request to unlock thecomputer system: in accordance with a determination that a first set ofbiometric identification criteria is satisfied, wherein the first set ofbiometric identification criteria is satisfied when a detected biometricfeature detected in conjunction with the request to unlock the computersystem is consistent with an enrolled biometric feature, transitioningthe computer system from the locked state to an unlocked state; and inaccordance with a determination that a second set of biometricidentification criteria is satisfied without satisfying the first set ofbiometric identification criteria, wherein the second set of biometricidentification criteria is satisfied when the detected biometric featuredetected in conjunction with the request to unlock the computer systemis partially consistent with an enrolled biometric feature, causing anoutput of a prompt that indicates that voice input is required to unlockthe computer system; after causing the output of the prompt, receiving,via the voice input device, an indication that voice input has beendetected: and in response to receiving the indication that voice inputhas been detected: in accordance with a determination that the detectedvoice input matches an authorized voice profile, transitioning thecomputer system from the locked state to the unlocked state; and inaccordance with a determination that the detected voice input does notmatch the authorized voice profile, maintaining the computer system inthe locked state.

In accordance with some embodiments, a transitory computer-readablestorage medium is described. The transitory computer readable storagemedium stores one or more programs configured to be executed by one ormore processors of a computer system that is in communication with oneor more biometric sensors, one or more input devices that include avoice input device, the one or more programs including instructions for:receiving, via the one or more input devices, a request to unlock thecomputer system while the computer system is in a locked state; inresponse to receiving the request to unlock the computer system: inaccordance with a determination that a first set of biometricidentification criteria is satisfied, wherein the first set of biometricidentification criteria is satisfied when a detected biometric featuredetected in conjunction with the request to unlock the computer systemis consistent with an enrolled biometric feature, transitioning thecomputer system from the locked state to an unlocked state; and inaccordance with a determination that a second set of biometricidentification criteria is satisfied without satisfying the first set ofbiometric identification criteria, wherein the second set of biometricidentification criteria is satisfied when the detected biometric featuredetected in conjunction with the request to unlock the computer systemis partially consistent with an enrolled biometric feature, causing anoutput of a prompt that indicates that voice input is required to unlockthe computer system; after causing the output of the prompt, receiving,via the voice input device, an indication that voice input has beendetected; and in response to receiving the indication that voice inputhas been detected: in accordance with a determination that the detectedvoice input matches an authorized voice profile, transitioning thecomputer system from the locked state to the unlocked state; and inaccordance with a determination that the detected voice input does notmatch the authorized voice profile, maintaining the computer system inthe locked state.

In accordance with some embodiments, a computer system is described. Thecomputer system is in communication with one or more biometric sensors,one or more input devices that include a voice input device; and memorystoring one or more programs configured to be executed by the one ormore processors, the one or more programs including instructions for:receiving, via the one or more input devices, a request to unlock thecomputer system while the computer system is in a locked state; inresponse to receiving the request to unlock the computer system: inaccordance with a determination that a first set of biometricidentification criteria is satisfied, wherein the first set of biometricidentification criteria is satisfied when a detected biometric featuredetected in conjunction with the request to unlock the computer systemis consistent with an enrolled biometric feature, transitioning thecomputer system from the locked state to an unlocked state; and inaccordance with a determination that a second set of biometricidentification criteria is satisfied without satisfying the first set ofbiometric identification criteria, wherein the second set of biometricidentification criteria is satisfied when the detected biometric featuredetected in conjunction with the request to unlock the computer systemis partially consistent with an enrolled biometric feature, causing anoutput of a prompt that indicates that voice input is required to unlockthe computer system; after causing the output of the prompt, receiving,via the voice input device, an indication that voice input has beendetected; and in response to receiving the indication that voice inputhas been detected: in accordance with a determination that the detectedvoice input matches an authorized voice profile, transitioning thecomputer system from the locked state to the unlocked state; and inaccordance with a determination that the detected voice input does notmatch the authorized voice profile, maintaining the computer system inthe locked state.

In accordance with some embodiments, a computer system is described. Thecomputer system is communication with one or more biometric sensors, andone or more input devices that include a voice input device. Thecomputer system comprises: means for receiving, via the one or moreinput devices, a request to unlock the computer system while thecomputer system is in a locked state; means, responsive to receiving therequest to unlock the computer system, for: in accordance with adetermination that a first set of biometric identification criteria issatisfied, wherein the first set of biometric identification criteria issatisfied when a detected biometric feature detected in conjunction withthe request to unlock the computer system is consistent with an enrolledbiometric feature, transitioning the computer system from the lockedstate to an unlocked state; and in accordance with a determination thata second set of biometric identification criteria is satisfied withoutsatisfying the first set of biometric identification criteria, whereinthe second set of biometric identification criteria is satisfied whenthe detected biometric feature detected in conjunction with the requestto unlock the computer system is partially consistent with an enrolledbiometric feature, causing an output of a prompt that indicates thatvoice input is required to unlock the computer system; means, aftercausing the output of the prompt, for receiving, via the voice inputdevice, an indication that voice input has been detected; and means,responsive to receiving the indication that voice input has beendetected, for: in accordance with a determination that the detectedvoice input matches an authorized voice profile, transitioning thecomputer system from the locked state to the unlocked state; and inaccordance with a determination that the detected voice input does notmatch the authorized voice profile, maintaining the computer system inthe locked state.

Executable instructions for performing these functions are, optionally,included in a non-transitory computer-readable storage medium or othercomputer program product configured for execution by one or moreprocessors. Executable instructions for performing these functions are,optionally, included in a transitory computer-readable storage medium orother computer program product configured for execution by one or moreprocessors.

Thus, devices are provided with faster, more efficient methods andinterfaces for implementing authentication, thereby increasing theeffectiveness, efficiency, and user satisfaction with such devices. Suchmethods and interfaces may complement or replace other methods forimplementing authentication.

DESCRIPTION OF THE FIGURES

For a better understanding of the various described embodiments,reference should be made to the Description of Embodiments below, inconjunction with the following drawings in which like reference numeralsrefer to corresponding parts throughout the figures.

FIG. 1A is a block diagram illustrating a portable multifunction devicewith a touch-sensitive display in accordance with some embodiments.

FIG. 1B is a block diagram illustrating exemplary components for eventhandling in accordance with some embodiments.

FIG. 2 illustrates a portable multifunction device having a touch screenin accordance with some embodiments.

FIG. 3 is a block diagram of an exemplary multifunction device with adisplay and a touch-sensitive surface in accordance with someembodiments.

FIG. 4A illustrates an exemplary user interface for a menu ofapplications on a portable multifunction device in accordance with someembodiments.

FIG. 4B illustrates an exemplary user interface for a multifunctiondevice with a touch-sensitive surface that is separate from the displayin accordance with some embodiments.

FIG. 5A illustrates a personal electronic device in accordance with someembodiments.

FIG. 5B is a block diagram illustrating a personal electronic device inaccordance with some embodiments.

FIGS. 5C-5D illustrate exemplary components of a personal electronicdevice having a touch-sensitive display and intensity sensors inaccordance with some embodiments.

FIGS. 5E-5H illustrate exemplary components and user interfaces of apersonal electronic device in accordance with some embodiments.

FIG. 6 illustrates exemplary devices connected via one or morecommunication channels in accordance with some embodiments.

FIGS. 7A-7V illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.

FIGS. 8A-8D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.

FIGS. 9A-9D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.

FIGS. 10A-10D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.

FIGS. 11A-11D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.

FIGS. 12A-12D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.

FIGS. 13A-13F illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.

FIGS. 14A-14B are a flow diagram illustrating a method for providingbiometric authentication at a computer system in accordance with someembodiments.

FIGS. 15A-15B are a flow diagram illustrating a method for providingbiometric authentication at a computer system in accordance with someembodiments.

DESCRIPTION OF EMBODIMENTS

The following description sets forth exemplary methods, parameters, andthe like. It should be recognized, however, that such description is notintended as a limitation on the scope of the present disclosure but isinstead provided as a description of exemplary embodiments.

There is a need for electronic devices that provide efficient methodsand interfaces for implementing authentication. For example, there is aneed for electronic devices to authenticate one or more users afterbiometric authentication is unsuccessful. Such techniques can reduce thecognitive burden on a user who wants to perform a secure operation afterone or more authentication techniques are successful, thereby enhancingproductivity. Further, such techniques can reduce processor and batterypower otherwise wasted on redundant user inputs.

Below, FIGS. 1A-1B, FIG. 2 , FIG. 3 , FIGS. 4A-4B, FIGS. 5A-5H, and FIG.6 provide a description of exemplary devices for performing thetechniques for implementing authentication.

FIGS. 7A-7V illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.FIGS. 8A-8D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.FIGS. 9A-9D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.FIGS. 10A-10D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.FIGS. 11A-11D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.FIGS. 12A-12D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.FIGS. 13A-13F illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.FIGS. 14A-14B are a flow diagram illustrating a method for providingbiometric authentication at a computer system in accordance with someembodiments. FIGS. 15A-15B are a flow diagram illustrating a method forproviding biometric authentication at a computer system in accordancewith some embodiments. The user interfaces in FIGS. 7A-7V, FIGS. 8A-8D,FIGS. 9A-9D, FIGS. 10A-10D, FIGS. 11A-11D, FIGS. 12A-12D, and FIGS.13A-13F are used to illustrate the processes described below, includingthe processes in FIGS. 14A-14B and FIGS. 15A-15B.

In addition, in methods described herein where one or more steps arecontingent upon one or more conditions having been met, it should beunderstood that the described method can be repeated in multiplerepetitions so that over the course of the repetitions all of theconditions upon which steps in the method are contingent have been metin different repetitions of the method. For example, if a methodrequires performing a first step if a condition is satisfied and asecond step if the condition is not satisfied, then a person of ordinaryskill would appreciate that the claimed steps are repeated until thecondition has been both satisfied and not satisfied, in no particularorder. Thus, a method described with one or more steps that arecontingent upon one or more conditions having been met could berewritten as a method that is repeated until each of the conditionsdescribed in the method has been met. This, however, is not required ofsystem or computer readable medium claims where the system or computerreadable medium contains instructions for performing the contingentoperations based on the satisfaction of the corresponding one or moreconditions and, thus, is capable of determining whether the contingencyhas or has not been satisfied without explicitly repeating steps of amethod until all of the conditions upon which steps in the method arecontingent have been met. A person having ordinary skill in the artwould also understand that, similar to a method with contingent steps, asystem or computer readable storage medium can repeat the steps of amethod as many times as are needed to ensure that all of the contingentsteps have been performed.

Although the following description uses terms “first,” “second,” etc. todescribe various elements, these elements should not be limited by theterms. These terms are only used to distinguish one element fromanother. For example, a first touch could be termed a second touch, and,similarly, a second touch could be termed a first touch, withoutdeparting from the scope of the various described embodiments. The firsttouch and the second touch are both touches, but they are not the sametouch.

The terminology used in the description of the various describedembodiments herein is for the purpose of describing particularembodiments only and is not intended to be limiting. As used in thedescription of the various described embodiments and the appendedclaims, the singular forms “a,” “an,” and “the” are intended to includethe plural forms as well, unless the context clearly indicatesotherwise. It will also be understood that the term “and/or” as usedherein refers to and encompasses any and all possible combinations ofone or more of the associated listed items. It will be furtherunderstood that the terms “includes,” “including,” “comprises,” and/or“comprising,” when used in this specification, specify the presence ofstated features, integers, steps, operations, elements, and/orcomponents, but do not preclude the presence or addition of one or moreother features, integers, steps, operations, elements, components,and/or groups thereof.

The term “if” is, optionally, construed to mean “when” or “upon” or “inresponse to determining” or “in response to detecting,” depending on thecontext. Similarly, the phrase “if it is determined” or “if [a statedcondition or event] is detected” is, optionally, construed to mean “upondetermining” or “in response to determining” or “upon detecting [thestated condition or event]” or “in response to detecting [the statedcondition or event],” depending on the context.

Embodiments of electronic devices, user interfaces for such devices, andassociated processes for using such devices are described. In someembodiments, the device is a portable communications device, such as amobile telephone, that also contains other functions, such as PDA and/ormusic player functions. Exemplary embodiments of portable multifunctiondevices include, without limitation, the iPhone®, iPod Touch®, and iPad®devices from Apple Inc. of Cupertino, Calif. Other portable electronicdevices, such as laptops or tablet computers with touch-sensitivesurfaces (e.g., touch screen displays and/or touchpads), are,optionally, used. It should also be understood that, in someembodiments, the device is not a portable communications device, but isa desktop computer with a touch-sensitive surface (e.g., a touch screendisplay and/or a touchpad). In some embodiments, the electronic deviceis a computer system that is in communication (e.g., via wirelesscommunication, via wired communication) with a display generationcomponent. The display generation component is configured to providevisual output, such as display via a CRT display, display via an LEDdisplay, or display via image projection. In some embodiments, thedisplay generation component is integrated with the computer system. Insome embodiments, the display generation component is separate from thecomputer system. As used herein, “displaying” content includes causingto display the content (e.g., video data rendered or decoded by displaycontroller 156) by transmitting, via a wired or wireless connection,data (e.g., image data or video data) to an integrated or externaldisplay generation component to visually produce the content.

In the discussion that follows, an electronic device that includes adisplay and a touch-sensitive surface is described. It should beunderstood, however, that the electronic device optionally includes oneor more other physical user-interface devices, such as a physicalkeyboard, a mouse, and/or a joystick.

The device typically supports a variety of applications, such as one ormore of the following: a drawing application, a presentationapplication, a word processing application, a website creationapplication, a disk authoring application, a spreadsheet application, agaming application, a telephone application, a video conferencingapplication, an e-mail application, an instant messaging application, aworkout support application, a photo management application, a digitalcamera application, a digital video camera application, a web browsingapplication, a digital music player application, and/or a digital videoplayer application.

The various applications that are executed on the device optionally useat least one common physical user-interface device, such as thetouch-sensitive surface. One or more functions of the touch-sensitivesurface as well as corresponding information displayed on the deviceare, optionally, adjusted and/or varied from one application to the nextand/or within a respective application. In this way, a common physicalarchitecture (such as the touch-sensitive surface) of the deviceoptionally supports the variety of applications with user interfacesthat are intuitive and transparent to the user.

Attention is now directed toward embodiments of portable devices withtouch-sensitive displays. FIG. 1A is a block diagram illustratingportable multifunction device 100 with touch-sensitive display system112 in accordance with some embodiments. Touch-sensitive display 112 issometimes called a “touch screen” for convenience and is sometimes knownas or called a “touch-sensitive display system.” Device 100 includesmemory 102 (which optionally includes one or more computer-readablestorage mediums), memory controller 122, one or more processing units(CPUs) 120, peripherals interface 118, RF circuitry 108, audio circuitry110, speaker 111, microphone 113, input/output (I/O) subsystem 106,other input control devices 116, and external port 124. Device 100optionally includes one or more optical sensors 164. Device 100optionally includes one or more contact intensity sensors 165 fordetecting intensity of contacts on device 100 (e.g., a touch-sensitivesurface such as touch-sensitive display system 112 of device 100).Device 100 optionally includes one or more tactile output generators 167for generating tactile outputs on device 100 (e.g., generating tactileoutputs on a touch-sensitive surface such as touch-sensitive displaysystem 112 of device 100 or touchpad 355 of device 300). Thesecomponents optionally communicate over one or more communication busesor signal lines 103.

As used in the specification and claims, the term “intensity” of acontact on a touch-sensitive surface refers to the force or pressure(force per unit area) of a contact (e.g., a finger contact) on thetouch-sensitive surface, or to a substitute (proxy) for the force orpressure of a contact on the touch-sensitive surface. The intensity of acontact has a range of values that includes at least four distinctvalues and more typically includes hundreds of distinct values (e.g., atleast 256). Intensity of a contact is, optionally, determined (ormeasured) using various approaches and various sensors or combinationsof sensors. For example, one or more force sensors underneath oradjacent to the touch-sensitive surface are, optionally, used to measureforce at various points on the touch-sensitive surface. In someimplementations, force measurements from multiple force sensors arecombined (e.g., a weighted average) to determine an estimated force of acontact. Similarly, a pressure-sensitive tip of a stylus is, optionally,used to determine a pressure of the stylus on the touch-sensitivesurface. Alternatively, the size of the contact area detected on thetouch-sensitive surface and/or changes thereto, the capacitance of thetouch-sensitive surface proximate to the contact and/or changes thereto,and/or the resistance of the touch-sensitive surface proximate to thecontact and/or changes thereto are, optionally, used as a substitute forthe force or pressure of the contact on the touch-sensitive surface. Insome implementations, the substitute measurements for contact force orpressure are used directly to determine whether an intensity thresholdhas been exceeded (e.g., the intensity threshold is described in unitscorresponding to the substitute measurements). In some implementations,the substitute measurements for contact force or pressure are convertedto an estimated force or pressure, and the estimated force or pressureis used to determine whether an intensity threshold has been exceeded(e.g., the intensity threshold is a pressure threshold measured in unitsof pressure). Using the intensity of a contact as an attribute of a userinput allows for user access to additional device functionality that mayotherwise not be accessible by the user on a reduced-size device withlimited real estate for displaying affordances (e.g., on atouch-sensitive display) and/or receiving user input (e.g., via atouch-sensitive display, a touch-sensitive surface, or aphysical/mechanical control such as a knob or a button).

As used in the specification and claims, the term “tactile output”refers to physical displacement of a device relative to a previousposition of the device, physical displacement of a component (e.g., atouch-sensitive surface) of a device relative to another component(e.g., housing) of the device, or displacement of the component relativeto a center of mass of the device that will be detected by a user withthe user's sense of touch. For example, in situations where the deviceor the component of the device is in contact with a surface of a userthat is sensitive to touch (e.g., a finger, palm, or other part of auser's hand), the tactile output generated by the physical displacementwill be interpreted by the user as a tactile sensation corresponding toa perceived change in physical characteristics of the device or thecomponent of the device. For example, movement of a touch-sensitivesurface (e.g., a touch-sensitive display or trackpad) is, optionally,interpreted by the user as a “down click” or “up click” of a physicalactuator button. In some cases, a user will feel a tactile sensationsuch as an “down click” or “up click” even when there is no movement ofa physical actuator button associated with the touch-sensitive surfacethat is physically pressed (e.g., displaced) by the user's movements. Asanother example, movement of the touch-sensitive surface is, optionally,interpreted or sensed by the user as “roughness” of the touch-sensitivesurface, even when there is no change in smoothness of thetouch-sensitive surface. While such interpretations of touch by a userwill be subject to the individualized sensory perceptions of the user,there are many sensory perceptions of touch that are common to a largemajority of users. Thus, when a tactile output is described ascorresponding to a particular sensory perception of a user (e.g., an “upclick,” a “down click,” “roughness”), unless otherwise stated, thegenerated tactile output corresponds to physical displacement of thedevice or a component thereof that will generate the described sensoryperception for a typical (or average) user.

It should be appreciated that device 100 is only one example of aportable multifunction device, and that device 100 optionally has moreor fewer components than shown, optionally combines two or morecomponents, or optionally has a different configuration or arrangementof the components. The various components shown in FIG. 1A areimplemented in hardware, software, or a combination of both hardware andsoftware, including one or more signal processing and/orapplication-specific integrated circuits.

Memory 102 optionally includes high-speed random access memory andoptionally also includes non-volatile memory, such as one or moremagnetic disk storage devices, flash memory devices, or othernon-volatile solid-state memory devices. Memory controller 122optionally controls access to memory 102 by other components of device100.

Peripherals interface 118 can be used to couple input and outputperipherals of the device to CPU 120 and memory 102. The one or moreprocessors 120 run or execute various software programs (such ascomputer programs (e.g., including instructions)) and/or sets ofinstructions stored in memory 102 to perform various functions fordevice 100 and to process data. In some embodiments, peripheralsinterface 118, CPU 120, and memory controller 122 are, optionally,implemented on a single chip, such as chip 104. In some otherembodiments, they are, optionally, implemented on separate chips.

RF (radio frequency) circuitry 108 receives and sends RF signals, alsocalled electromagnetic signals. RF circuitry 108 converts electricalsignals to/from electromagnetic signals and communicates withcommunications networks and other communications devices via theelectromagnetic signals. RF circuitry 108 optionally includes well-knowncircuitry for performing these functions, including but not limited toan antenna system, an RF transceiver, one or more amplifiers, a tuner,one or more oscillators, a digital signal processor, a CODEC chipset, asubscriber identity module (SIM) card, memory, and so forth. RFcircuitry 108 optionally communicates with networks, such as theInternet, also referred to as the World Wide Web (WWW), an intranetand/or a wireless network, such as a cellular telephone network, awireless local area network (LAN) and/or a metropolitan area network(MAN), and other devices by wireless communication. The RF circuitry 108optionally includes well-known circuitry for detecting near fieldcommunication (NFC) fields, such as by a short-range communicationradio. The wireless communication optionally uses any of a plurality ofcommunications standards, protocols, and technologies, including but notlimited to Global System for Mobile Communications (GSM), Enhanced DataGSM Environment (EDGE), high-speed downlink packet access (HSDPA),high-speed uplink packet access (HSUPA), Evolution, Data-Only (EV-DO),HSPA, HSPA+, Dual-Cell HSPA (DC-HSPDA), long term evolution (LTE), nearfield communication (NFC), wideband code division multiple access(W-CDMA), code division multiple access (CDMA), time division multipleaccess (TDMA), Bluetooth, Bluetooth Low Energy (BTLE), Wireless Fidelity(Wi-Fi) (e.g., IEEE 802.11a, IEEE 802.11b, IEEE 802.11g, IEEE 802.11n,and/or IEEE 802.11ac), voice over Internet Protocol (VoIP), Wi-MAX, aprotocol for e-mail (e.g., Internet message access protocol (IMAP)and/or post office protocol (POP)), instant messaging (e.g., extensiblemessaging and presence protocol (XMPP), Session Initiation Protocol forInstant Messaging and Presence Leveraging Extensions (SIMPLE), InstantMessaging and Presence Service (IMPS)), and/or Short Message Service(SMS), or any other suitable communication protocol, includingcommunication protocols not yet developed as of the filing date of thisdocument.

Audio circuitry 110, speaker 111, and microphone 113 provide an audiointerface between a user and device 100. Audio circuitry 110 receivesaudio data from peripherals interface 118, converts the audio data to anelectrical signal, and transmits the electrical signal to speaker 111.Speaker 111 converts the electrical signal to human-audible sound waves.Audio circuitry 110 also receives electrical signals converted bymicrophone 113 from sound waves. Audio circuitry 110 converts theelectrical signal to audio data and transmits the audio data toperipherals interface 118 for processing. Audio data is, optionally,retrieved from and/or transmitted to memory 102 and/or RF circuitry 108by peripherals interface 118. In some embodiments, audio circuitry 110also includes a headset jack (e.g., 212, FIG. 2 ). The headset jackprovides an interface between audio circuitry 110 and removable audioinput/output peripherals, such as output-only headphones or a headsetwith both output (e.g., a headphone for one or both ears) and input(e.g., a microphone).

I/O subsystem 106 couples input/output peripherals on device 100, suchas touch screen 112 and other input control devices 116, to peripheralsinterface 118. I/O subsystem 106 optionally includes display controller156, optical sensor controller 158, depth camera controller 169,intensity sensor controller 159, haptic feedback controller 161, and oneor more input controllers 160 for other input or control devices. Theone or more input controllers 160 receive/send electrical signalsfrom/to other input control devices 116. The other input control devices116 optionally include physical buttons (e.g., push buttons, rockerbuttons, etc.), dials, slider switches, joysticks, click wheels, and soforth. In some embodiments, input controller(s) 160 are, optionally,coupled to any (or none) of the following: a keyboard, an infrared port,a USB port, and a pointer device such as a mouse. The one or morebuttons (e.g., 208, FIG. 2 ) optionally include an up/down button forvolume control of speaker 111 and/or microphone 113. The one or morebuttons optionally include a push button (e.g., 206, FIG. 2 ). In someembodiments, the electronic device is a computer system that is incommunication (e.g., via wireless communication, via wiredcommunication) with one or more input devices. In some embodiments, theone or more input devices include a touch-sensitive surface (e.g., atrackpad, as part of a touch-sensitive display). In some embodiments,the one or more input devices include one or more camera sensors (e.g.,one or more optical sensors 164 and/or one or more depth camera sensors175), such as for tracking a user's gestures (e.g., hand gestures) asinput. In some embodiments, the one or more input devices are integratedwith the computer system. In some embodiments, the one or more inputdevices are separate from the computer system.

A quick press of the push button optionally disengages a lock of touchscreen 112 or optionally begins a process that uses gestures on thetouch screen to unlock the device, as described in U.S. patentapplication Ser. No. 11/322,549, “Unlocking a Device by PerformingGestures on an Unlock Image,” filed Dec. 23, 2005, U.S. Pat. No.7,657,849, which is hereby incorporated by reference in its entirety. Alonger press of the push button (e.g., 206) optionally turns power todevice 100 on or off. The functionality of one or more of the buttonsare, optionally, user-customizable. Touch screen 112 is used toimplement virtual or soft buttons and one or more soft keyboards.

Touch-sensitive display 112 provides an input interface and an outputinterface between the device and a user. Display controller 156 receivesand/or sends electrical signals from/to touch screen 112. Touch screen112 displays visual output to the user. The visual output optionallyincludes graphics, text, icons, video, and any combination thereof(collectively termed “graphics”). In some embodiments, some or all ofthe visual output optionally corresponds to user-interface objects.

Touch screen 112 has a touch-sensitive surface, sensor, or set ofsensors that accepts input from the user based on haptic and/or tactilecontact. Touch screen 112 and display controller 156 (along with anyassociated modules and/or sets of instructions in memory 102) detectcontact (and any movement or breaking of the contact) on touch screen112 and convert the detected contact into interaction withuser-interface objects (e.g., one or more soft keys, icons, web pages,or images) that are displayed on touch screen 112. In an exemplaryembodiment, a point of contact between touch screen 112 and the usercorresponds to a finger of the user.

Touch screen 112 optionally uses LCD (liquid crystal display)technology, LPD (light emitting polymer display) technology, or LED(light emitting diode) technology, although other display technologiesare used in other embodiments. Touch screen 112 and display controller156 optionally detect contact and any movement or breaking thereof usingany of a plurality of touch sensing technologies now known or laterdeveloped, including but not limited to capacitive, resistive, infrared,and surface acoustic wave technologies, as well as other proximitysensor arrays or other elements for determining one or more points ofcontact with touch screen 112. In an exemplary embodiment, projectedmutual capacitance sensing technology is used, such as that found in theiPhone® and iPod Touch® from Apple Inc. of Cupertino, Calif.

A touch-sensitive display in some embodiments of touch screen 112 is,optionally, analogous to the multi-touch sensitive touchpads describedin the following U.S. Pat. No. 6,323,846 (Westerman et al.), U.S. Pat.No. 6,570,557 (Westerman et al.), and/or U.S. Pat. No. 6,677,932(Westerman), and/or U.S. Patent Publication 2002/0015024A1, each ofwhich is hereby incorporated by reference in its entirety. However,touch screen 112 displays visual output from device 100, whereastouch-sensitive touchpads do not provide visual output.

A touch-sensitive display in some embodiments of touch screen 112 isdescribed in the following applications: (1) U.S. patent applicationSer. No. 11/381,313, “Multipoint Touch Surface Controller,” filed May 2,2006; (2) U.S. patent application Ser. No. 10/840,862, “MultipointTouchscreen,” filed May 6, 2004; (3) U.S. patent application Ser. No.10/903,964, “Gestures For Touch Sensitive Input Devices,” filed Jul. 30,2004; (4) U.S. patent application Ser. No. 11/048,264, “Gestures ForTouch Sensitive Input Devices,” filed Jan. 31, 2005; (5) U.S. patentapplication Ser. No. 11/038,590, “Mode-Based Graphical User InterfacesFor Touch Sensitive Input Devices,” filed Jan. 18, 2005, (6) U.S. patentapplication Ser. No. 11/228,758, “Virtual Input Device Placement On ATouch Screen User Interface,” filed Sep. 16, 2005; (7) U.S. patentapplication Ser. No. 11/228,700, “Operation Of A Computer With A TouchScreen Interface,” filed Sep. 16, 2005; (8) U.S. patent application Ser.No. 11/228,737, “Activating Virtual Keys Of A Touch-Screen VirtualKeyboard,” filed Sep. 16, 2005; and (9) U.S. patent application Ser. No.11/367,749, “Multi-Functional Hand-Held Device,” filed Mar. 3, 2006. Allof these applications are incorporated by reference herein in theirentirety.

Touch screen 112 optionally has a video resolution in excess of 100 dpi.In some embodiments, the touch screen has a video resolution ofapproximately 160 dpi. The user optionally makes contact with touchscreen 112 using any suitable object or appendage, such as a stylus, afinger, and so forth. In some embodiments, the user interface isdesigned to work primarily with finger-based contacts and gestures,which can be less precise than stylus-based input due to the larger areaof contact of a finger on the touch screen. In some embodiments, thedevice translates the rough finger-based input into a precisepointer/cursor position or command for performing the actions desired bythe user.

In some embodiments, in addition to the touch screen, device 100optionally includes a touchpad for activating or deactivating particularfunctions. In some embodiments, the touchpad is a touch-sensitive areaof the device that, unlike the touch screen, does not display visualoutput. The touchpad is, optionally, a touch-sensitive surface that isseparate from touch screen 112 or an extension of the touch-sensitivesurface formed by the touch screen.

Device 100 also includes power system 162 for powering the variouscomponents. Power system 162 optionally includes a power managementsystem, one or more power sources (e.g., battery, alternating current(AC)), a recharging system, a power failure detection circuit, a powerconverter or inverter, a power status indicator (e.g., a light-emittingdiode (LED)) and any other components associated with the generation,management and distribution of power in portable devices.

Device 100 optionally also includes one or more optical sensors 164.FIG. 1A shows an optical sensor coupled to optical sensor controller 158in I/O subsystem 106. Optical sensor 164 optionally includescharge-coupled device (CCD) or complementary metal-oxide semiconductor(CMOS) phototransistors. Optical sensor 164 receives light from theenvironment, projected through one or more lenses, and converts thelight to data representing an image. In conjunction with imaging module143 (also called a camera module), optical sensor 164 optionallycaptures still images or video. In some embodiments, an optical sensoris located on the back of device 100, opposite touch screen display 112on the front of the device so that the touch screen display is enabledfor use as a viewfinder for still and/or video image acquisition. Insome embodiments, an optical sensor is located on the front of thedevice so that the user's image is, optionally, obtained for videoconferencing while the user views the other video conferenceparticipants on the touch screen display. In some embodiments, theposition of optical sensor 164 can be changed by the user (e.g., byrotating the lens and the sensor in the device housing) so that a singleoptical sensor 164 is used along with the touch screen display for bothvideo conferencing and still and/or video image acquisition.

Device 100 optionally also includes one or more depth camera sensors175. FIG. 1A shows a depth camera sensor coupled to depth cameracontroller 169 in I/O subsystem 106. Depth camera sensor 175 receivesdata from the environment to create a three dimensional model of anobject (e.g., a face) within a scene from a viewpoint (e.g., a depthcamera sensor). In some embodiments, in conjunction with imaging module143 (also called a camera module), depth camera sensor 175 is optionallyused to determine a depth map of different portions of an image capturedby the imaging module 143. In some embodiments, a depth camera sensor islocated on the front of device 100 so that the user's image with depthinformation is, optionally, obtained for video conferencing while theuser views the other video conference participants on the touch screendisplay and to capture selfies with depth map data. In some embodiments,the depth camera sensor 175 is located on the back of device, or on theback and the front of the device 100. In some embodiments, the positionof depth camera sensor 175 can be changed by the user (e.g., by rotatingthe lens and the sensor in the device housing) so that a depth camerasensor 175 is used along with the touch screen display for both videoconferencing and still and/or video image acquisition.

In some embodiments, a depth map (e.g., depth map image) containsinformation (e.g., values) that relates to the distance of objects in ascene from a viewpoint (e.g., a camera, an optical sensor, a depthcamera sensor). In one embodiment of a depth map, each depth pixeldefines the position in the viewpoint's Z-axis where its correspondingtwo-dimensional pixel is located. In some embodiments, a depth map iscomposed of pixels wherein each pixel is defined by a value (e.g.,0-255). For example, the “0” value represents pixels that are located atthe most distant place in a “three dimensional” scene and the “255”value represents pixels that are located closest to a viewpoint (e.g., acamera, an optical sensor, a depth camera sensor) in the “threedimensional” scene. In other embodiments, a depth map represents thedistance between an object in a scene and the plane of the viewpoint. Insome embodiments, the depth map includes information about the relativedepth of various features of an object of interest in view of the depthcamera (e.g., the relative depth of eyes, nose, mouth, ears of a user'sface). In some embodiments, the depth map includes information thatenables the device to determine contours of the object of interest in az direction.

Device 100 optionally also includes one or more contact intensitysensors 165. FIG. 1A shows a contact intensity sensor coupled tointensity sensor controller 159 in I/O subsystem 106. Contact intensitysensor 165 optionally includes one or more piezoresistive strain gauges,capacitive force sensors, electric force sensors, piezoelectric forcesensors, optical force sensors, capacitive touch-sensitive surfaces, orother intensity sensors (e.g., sensors used to measure the force (orpressure) of a contact on a touch-sensitive surface). Contact intensitysensor 165 receives contact intensity information (e.g., pressureinformation or a proxy for pressure information) from the environment.In some embodiments, at least one contact intensity sensor is collocatedwith, or proximate to, a touch-sensitive surface (e.g., touch-sensitivedisplay system 112). In some embodiments, at least one contact intensitysensor is located on the back of device 100, opposite touch screendisplay 112, which is located on the front of device 100.

Device 100 optionally also includes one or more proximity sensors 166.FIG. 1A shows proximity sensor 166 coupled to peripherals interface 118.Alternately, proximity sensor 166 is, optionally, coupled to inputcontroller 160 in I/O subsystem 106. Proximity sensor 166 optionallyperforms as described in U.S. patent application Ser. No. 11/241,839,“Proximity Detector In Handheld Device”; Ser. No. 11/240,788, “ProximityDetector In Handheld Device”, Ser. No. 11/620,702, “Using Ambient LightSensor To Augment Proximity Sensor Output”; Ser. No. 11/586,862,“Automated Response To And Sensing Of User Activity In PortableDevices”; and Ser. No. 11/638,251, “Methods And Systems For AutomaticConfiguration Of Peripherals,” which are hereby incorporated byreference in their entirety. In some embodiments, the proximity sensorturns off and disables touch screen 112 when the multifunction device isplaced near the user's ear (e.g., when the user is making a phone call).

Device 100 optionally also includes one or more tactile outputgenerators 167. FIG. 1A shows a tactile output generator coupled tohaptic feedback controller 161 in I/O subsystem 106. Tactile outputgenerator 167 optionally includes one or more electroacoustic devicessuch as speakers or other audio components and/or electromechanicaldevices that convert energy into linear motion such as a motor,solenoid, electroactive polymer, piezoelectric actuator, electrostaticactuator, or other tactile output generating component (e.g., acomponent that converts electrical signals into tactile outputs on thedevice). Contact intensity sensor 165 receives tactile feedbackgeneration instructions from haptic feedback module 133 and generatestactile outputs on device 100 that are capable of being sensed by a userof device 100. In some embodiments, at least one tactile outputgenerator is collocated with, or proximate to, a touch-sensitive surface(e.g., touch-sensitive display system 112) and, optionally, generates atactile output by moving the touch-sensitive surface vertically (e.g.,in/out of a surface of device 100) or laterally (e.g., back and forth inthe same plane as a surface of device 100). In some embodiments, atleast one tactile output generator sensor is located on the back ofdevice 100, opposite touch screen display 112, which is located on thefront of device 100.

Device 100 optionally also includes one or more accelerometers 168. FIG.1A shows accelerometer 168 coupled to peripherals interface 118.Alternately, accelerometer 168 is, optionally, coupled to an inputcontroller 160 in I/O subsystem 106. Accelerometer 168 optionallyperforms as described in U.S. Patent Publication No. 20050190059,“Acceleration-based Theft Detection System for Portable ElectronicDevices,” and U.S. Patent Publication No. 20060017692, “Methods AndApparatuses For Operating A Portable Device Based On An Accelerometer,”both of which are incorporated by reference herein in their entirety. Insome embodiments, information is displayed on the touch screen displayin a portrait view or a landscape view based on an analysis of datareceived from the one or more accelerometers. Device 100 optionallyincludes, in addition to accelerometer(s) 168, a magnetometer and a GPS(or GLONASS or other global navigation system) receiver for obtaininginformation concerning the location and orientation (e.g., portrait orlandscape) of device 100.

In some embodiments, the software components stored in memory 102include operating system 126, communication module (or set ofinstructions) 128, contact/motion module (or set of instructions) 130,graphics module (or set of instructions) 132, text input module (or setof instructions) 134, Global Positioning System (GPS) module (or set ofinstructions) 135, and applications (or sets of instructions) 136.Furthermore, in some embodiments, memory 102 (FIG. 1A) or 370 (FIG. 3 )stores device/global internal state 157, as shown in FIGS. 1A and 3 .Device/global internal state 157 includes one or more of: activeapplication state, indicating which applications, if any, are currentlyactive; display state, indicating what applications, views or otherinformation occupy various regions of touch screen display 112; sensorstate, including information obtained from the device's various sensorsand input control devices 116; and location information concerning thedevice's location and/or attitude.

Operating system 126 (e.g., Darwin, RTXC, LINUX, UNIX, OS X, iOS,WINDOWS, or an embedded operating system such as VxWorks) includesvarious software components and/or drivers for controlling and managinggeneral system tasks (e.g., memory management, storage device control,power management, etc.) and facilitates communication between varioushardware and software components.

Communication module 128 facilitates communication with other devicesover one or more external ports 124 and also includes various softwarecomponents for handling data received by RF circuitry 108 and/orexternal port 124. External port 124 (e.g., Universal Serial Bus (USB),FIREWIRE, etc.) is adapted for coupling directly to other devices orindirectly over a network (e.g., the Internet, wireless LAN, etc.). Insome embodiments, the external port is a multi-pin (e.g., 30-pin)connector that is the same as, or similar to and/or compatible with, the30-pin connector used on iPod® (trademark of Apple Inc.) devices.

Contact/motion module 130 optionally detects contact with touch screen112 (in conjunction with display controller 156) and othertouch-sensitive devices (e.g., a touchpad or physical click wheel).Contact/motion module 130 includes various software components forperforming various operations related to detection of contact, such asdetermining if contact has occurred (e.g., detecting a finger-downevent), determining an intensity of the contact (e.g., the force orpressure of the contact or a substitute for the force or pressure of thecontact), determining if there is movement of the contact and trackingthe movement across the touch-sensitive surface (e.g., detecting one ormore finger-dragging events), and determining if the contact has ceased(e.g., detecting a finger-up event or a break in contact).Contact/motion module 130 receives contact data from the touch-sensitivesurface. Determining movement of the point of contact, which isrepresented by a series of contact data, optionally includes determiningspeed (magnitude), velocity (magnitude and direction), and/or anacceleration (a change in magnitude and/or direction) of the point ofcontact. These operations are, optionally, applied to single contacts(e.g., one finger contacts) or to multiple simultaneous contacts (e.g.,“multitouch”/multiple finger contacts). In some embodiments,contact/motion module 130 and display controller 156 detect contact on atouchpad.

In some embodiments, contact/motion module 130 uses a set of one or moreintensity thresholds to determine whether an operation has beenperformed by a user (e.g., to determine whether a user has “clicked” onan icon). In some embodiments, at least a subset of the intensitythresholds are determined in accordance with software parameters (e.g.,the intensity thresholds are not determined by the activation thresholdsof particular physical actuators and can be adjusted without changingthe physical hardware of device 100). For example, a mouse “click”threshold of a trackpad or touch screen display can be set to any of alarge range of predefined threshold values without changing the trackpador touch screen display hardware. Additionally, in some implementations,a user of the device is provided with software settings for adjustingone or more of the set of intensity thresholds (e.g., by adjustingindividual intensity thresholds and/or by adjusting a plurality ofintensity thresholds at once with a system-level click “intensity”parameter).

Contact/motion module 130 optionally detects a gesture input by a user.Different gestures on the touch-sensitive surface have different contactpatterns (e.g., different motions, timings, and/or intensities ofdetected contacts). Thus, a gesture is, optionally, detected bydetecting a particular contact pattern. For example, detecting a fingertap gesture includes detecting a finger-down event followed by detectinga finger-up (liftoff) event at the same position (or substantially thesame position) as the finger-down event (e.g., at the position of anicon). As another example, detecting a finger swipe gesture on thetouch-sensitive surface includes detecting a finger-down event followedby detecting one or more finger-dragging events, and subsequentlyfollowed by detecting a finger-up (liftoff) event.

Graphics module 132 includes various known software components forrendering and displaying graphics on touch screen 112 or other display,including components for changing the visual impact (e.g., brightness,transparency, saturation, contrast, or other visual property) ofgraphics that are displayed. As used herein, the term “graphics”includes any object that can be displayed to a user, including, withoutlimitation, text, web pages, icons (such as user-interface objectsincluding soft keys), digital images, videos, animations, and the like.

In some embodiments, graphics module 132 stores data representinggraphics to be used. Each graphic is, optionally, assigned acorresponding code. Graphics module 132 receives, from applicationsetc., one or more codes specifying graphics to be displayed along with,if necessary, coordinate data and other graphic property data, and thengenerates screen image data to output to display controller 156.

Haptic feedback module 133 includes various software components forgenerating instructions used by tactile output generator(s) 167 toproduce tactile outputs at one or more locations on device 100 inresponse to user interactions with device 100.

Text input module 134, which is, optionally, a component of graphicsmodule 132, provides soft keyboards for entering text in variousapplications (e.g., contacts 137, e-mail 140, IM 141, browser 147, andany other application that needs text input).

GPS module 135 determines the location of the device and provides thisinformation for use in various applications (e.g., to telephone 138 foruse in location-based dialing; to camera 143 as picture/video metadata;and to applications that provide location-based services such as weatherwidgets, local yellow page widgets, and map/navigation widgets).

Applications 136 optionally include the following modules (or sets ofinstructions), or a subset or superset thereof:

-   -   Contacts module 137 (sometimes called an address book or contact        list);    -   Telephone module 138;    -   Video conference module 139;    -   E-mail client module 140;    -   Instant messaging (IM) module 141;    -   Workout support module 142;    -   Camera module 143 for still and/or video images;    -   Image management module 144;    -   Video player module;    -   Music player module;    -   Browser module 147;    -   Calendar module 148;    -   Widget modules 149, which optionally include one or more of:        weather widget 149-1, stocks widget 149-2, calculator widget        149-3, alarm clock widget 149-4, dictionary widget 149-5, and        other widgets obtained by the user, as well as user-created        widgets 149-6:    -   Widget creator module 150 for making user-created widgets 149-6;    -   Search module 151;    -   Video and music player module 152, which merges video player        module and music player module,    -   Notes module 153;    -   Map module 154; and/or    -   Online video module 155.

Examples of other applications 136 that are, optionally, stored inmemory 102 include other word processing applications, other imageediting applications, drawing applications, presentation applications,JAVA-enabled applications, encryption, digital rights management, voicerecognition, and voice replication.

In conjunction with touch screen 112, display controller 156,contact/motion module 130, graphics module 132, and text input module134, contacts module 137 are, optionally, used to manage an address bookor contact list (e.g., stored in application internal state 192 ofcontacts module 137 in memory 102 or memory 370), including: addingname(s) to the address book; deleting name(s) from the address book;associating telephone number(s), e-mail address(es), physicaladdress(es) or other information with a name; associating an image witha name; categorizing and sorting names; providing telephone numbers ore-mail addresses to initiate and/or facilitate communications bytelephone 138, video conference module 139, e-mail 140, or IM 141; andso forth.

In conjunction with RF circuitry 108, audio circuitry 110, speaker 111,microphone 113, touch screen 112, display controller 156, contact/motionmodule 130, graphics module 132, and text input module 134, telephonemodule 138 are optionally, used to enter a sequence of characterscorresponding to a telephone number, access one or more telephonenumbers in contacts module 137, modify a telephone number that has beenentered, dial a respective telephone number, conduct a conversation, anddisconnect or hang up when the conversation is completed. As notedabove, the wireless communication optionally uses any of a plurality ofcommunications standards, protocols, and technologies.

In conjunction with RF circuitry 108, audio circuitry 110, speaker 111,microphone 113, touch screen 112, display controller 156, optical sensor164, optical sensor controller 158, contact/motion module 130, graphicsmodule 132, text input module 134, contacts module 137, and telephonemodule 138, video conference module 139 includes executable instructionsto initiate, conduct, and terminate a video conference between a userand one or more other participants in accordance with user instructions.

In conjunction with RF circuitry 108, touch screen 112, displaycontroller 156, contact/motion module 130, graphics module 132, and textinput module 134, e-mail client module 140 includes executableinstructions to create, send, receive, and manage e-mail in response touser instructions. In conjunction with image management module 144,e-mail client module 140 makes it very easy to create and send e-mailswith still or video images taken with camera module 143.

In conjunction with RF circuitry 108, touch screen 112, displaycontroller 156, contact/motion module 130, graphics module 132, and textinput module 134, the instant messaging module 141 includes executableinstructions to enter a sequence of characters corresponding to aninstant message, to modify previously entered characters, to transmit arespective instant message (for example, using a Short Message Service(SMS) or Multimedia Message Service (MMS) protocol for telephony-basedinstant messages or using XMPP, SIMPLE, or IMPS for Internet-basedinstant messages), to receive instant messages, and to view receivedinstant messages. In some embodiments, transmitted and/or receivedinstant messages optionally include graphics, photos, audio files, videofiles and/or other attachments as are supported in an MMS and/or anEnhanced Messaging Service (EMS). As used herein, “instant messaging”refers to both telephony-based messages (e.g., messages sent using SMSor MMS) and Internet-based messages (e.g., messages sent using XMPP,SIMPLE, or IMPS).

In conjunction with RF circuitry 108, touch screen 112, displaycontroller 156, contact/motion module 130, graphics module 132, textinput module 134, GPS module 135, map module 154, and music playermodule, workout support module 142 includes executable instructions tocreate workouts (e.g., with time, distance, and/or calorie burninggoals); communicate with workout sensors (sports devices); receiveworkout sensor data; calibrate sensors used to monitor a workout; selectand play music for a workout; and display, store, and transmit workoutdata.

In conjunction with touch screen 112, display controller 156, opticalsensor(s) 164, optical sensor controller 158, contact/motion module 130,graphics module 132, and image management module 144, camera module 143includes executable instructions to capture still images or video(including a video stream) and store them into memory 102, modifycharacteristics of a still image or video, or delete a still image orvideo from memory 102.

In conjunction with touch screen 112, display controller 156,contact/motion module 130, graphics module 132, text input module 134,and camera module 143, image management module 144 includes executableinstructions to arrange, modify (e.g., edit), or otherwise manipulate,label, delete, present (e.g., in a digital slide show or album), andstore still and/or video images.

In conjunction with RF circuitry 108, touch screen 112, displaycontroller 156, contact/motion module 130, graphics module 132, and textinput module 134, browser module 147 includes executable instructions tobrowse the Internet in accordance with user instructions, includingsearching, linking to, receiving, and displaying web pages or portionsthereof, as well as attachments and other files linked to web pages.

In conjunction with RF circuitry 108, touch screen 112, displaycontroller 156, contact/motion module 130, graphics module 132, textinput module 134, e-mail client module 140, and browser module 147,calendar module 148 includes executable instructions to create, display,modify, and store calendars and data associated with calendars (e.g.,calendar entries, to-do lists, etc.) in accordance with userinstructions.

In conjunction with RF circuitry 108, touch screen 112, displaycontroller 156, contact/motion module 130, graphics module 132, textinput module 134, and browser module 147, widget modules 149 aremini-applications that are, optionally, downloaded and used by a user(e.g., weather widget 149-1, stocks widget 149-2, calculator widget149-3, alarm clock widget 149-4, and dictionary widget 149-5) or createdby the user (e.g., user-created widget 149-6). In some embodiments, awidget includes an HTML (Hypertext Markup Language) file, a CSS(Cascading Style Sheets) file, and a JavaScript file. In someembodiments, a widget includes an XML (Extensible Markup Language) fileand a JavaScript file (e.g., Yahoo!Widgets).

In conjunction with RF circuitry 108, touch screen 112, displaycontroller 156, contact/motion module 130, graphics module 132, textinput module 134, and browser module 147, the widget creator module 150are, optionally, used by a user to create widgets (e.g., turning auser-specified portion of a web page into a widget).

In conjunction with touch screen 112, display controller 156,contact/motion module 130, graphics module 132, and text input module134, search module 151 includes executable instructions to search fortext, music, sound, image, video, and/or other files in memory 102 thatmatch one or more search criteria (e.g., one or more user-specifiedsearch terms) in accordance with user instructions.

In conjunction with touch screen 112, display controller 156,contact/motion module 130, graphics module 132, audio circuitry 110,speaker 111, RF circuitry 108, and browser module 147, video and musicplayer module 152 includes executable instructions that allow the userto download and play back recorded music and other sound files stored inone or more file formats, such as MP3 or AAC files, and executableinstructions to display, present, or otherwise play back videos (e.g.,on touch screen 112 or on an external, connected display via externalport 124). In some embodiments, device 100 optionally includes thefunctionality of an MP3 player, such as an iPod (trademark of AppleInc.).

In conjunction with touch screen 112, display controller 156,contact/motion module 130, graphics module 132, and text input module134, notes module 153 includes executable instructions to create andmanage notes, to-do lists, and the like in accordance with userinstructions.

In conjunction with RF circuitry 108, touch screen 112, displaycontroller 156, contact/motion module 130, graphics module 132, textinput module 134, GPS module 135, and browser module 147, map module 154are, optionally, used to receive, display, modify, and store maps anddata associated with maps (e.g., driving directions, data on stores andother points of interest at or near a particular location, and otherlocation-based data) in accordance with user instructions.

In conjunction with touch screen 112, display controller 156,contact/motion module 130, graphics module 132, audio circuitry 110,speaker 111, RF circuitry 108, text input module 134, e-mail clientmodule 140, and browser module 147, online video module 155 includesinstructions that allow the user to access, browse, receive (e.g., bystreaming and/or download), play back (e.g., on the touch screen or onan external, connected display via external port 124), send an e-mailwith a link to a particular online video, and otherwise manage onlinevideos in one or more file formats, such as H.264. In some embodiments,instant messaging module 141, rather than e-mail client module 140, isused to send a link to a particular online video. Additional descriptionof the online video application can be found in U.S. Provisional PatentApplication No. 60/936,562, “Portable Multifunction Device, Method, andGraphical User Interface for Playing Online Videos,” filed Jun. 20,2007, and U.S. patent application Ser. No. 11/968,067, “PortableMultifunction Device, Method, and Graphical User Interface for PlayingOnline Videos,” filed Dec. 31, 2007, the contents of which are herebyincorporated by reference in their entirety.

Each of the above-identified modules and applications corresponds to aset of executable instructions for performing one or more functionsdescribed above and the methods described in this application (e.g., thecomputer-implemented methods and other information processing methodsdescribed herein). These modules (e.g., sets of instructions) need notbe implemented as separate software programs (such as computer programs(e.g., including instructions)), procedures, or modules, and thusvarious subsets of these modules are, optionally, combined or otherwiserearranged in various embodiments. For example, video player module is,optionally, combined with music player module into a single module(e.g., video and music player module 152, FIG. 1A). In some embodiments,memory 102 optionally stores a subset of the modules and data structuresidentified above. Furthermore, memory 102 optionally stores additionalmodules and data structures not described above.

In some embodiments, device 100 is a device where operation of apredefined set of functions on the device is performed exclusivelythrough a touch screen and/or a touchpad. By using a touch screen and/ora touchpad as the primary input control device for operation of device100, the number of physical input control devices (such as push buttons,dials, and the like) on device 100 is, optionally, reduced.

The predefined set of functions that are performed exclusively through atouch screen and/or a touchpad optionally include navigation betweenuser interfaces. In some embodiments, the touchpad, when touched by theuser, navigates device 100 to a main, home, or root menu from any userinterface that is displayed on device 100. In such embodiments, a “menubutton” is implemented using a touchpad. In some other embodiments, themenu button is a physical push button or other physical input controldevice instead of a touchpad.

FIG. 1B is a block diagram illustrating exemplary components for eventhandling in accordance with some embodiments. In some embodiments,memory 102 (FIG. 1A) or 370 (FIG. 3 ) includes event sorter 170 (e.g.,in operating system 126) and a respective application 136-1 (e.g., anyof the aforementioned applications 137-151, 155, 380-390).

Event sorter 170 receives event information and determines theapplication 136-1 and application view 191 of application 136-1 to whichto deliver the event information. Event sorter 170 includes eventmonitor 171 and event dispatcher module 174. In some embodiments,application 136-1 includes application internal state 192, whichindicates the current application view(s) displayed on touch-sensitivedisplay 112 when the application is active or executing. In someembodiments, device/global internal state 157 is used by event sorter170 to determine which application(s) is (are) currently active, andapplication internal state 192 is used by event sorter 170 to determineapplication views 191 to which to deliver event information.

In some embodiments, application internal state 192 includes additionalinformation, such as one or more of: resume information to be used whenapplication 136-1 resumes execution, user interface state informationthat indicates information being displayed or that is ready for displayby application 136-1, a state queue for enabling the user to go back toa prior state or view of application 136-1, and a redo/undo queue ofprevious actions taken by the user.

Event monitor 171 receives event information from peripherals interface118. Event information includes information about a sub-event (e.g., auser touch on touch-sensitive display 112, as part of a multi-touchgesture). Peripherals interface 118 transmits information it receivesfrom I/O subsystem 106 or a sensor, such as proximity sensor 166,accelerometer(s) 168, and/or microphone 113 (through audio circuitry110). Information that peripherals interface 118 receives from I/Osubsystem 106 includes information from touch-sensitive display 112 or atouch-sensitive surface.

In some embodiments, event monitor 171 sends requests to the peripheralsinterface 118 at predetermined intervals. In response, peripheralsinterface 118 transmits event information. In other embodiments,peripherals interface 118 transmits event information only when there isa significant event (e.g., receiving an input above a predeterminednoise threshold and/or for more than a predetermined duration).

In some embodiments, event sorter 170 also includes a hit viewdetermination module 172 and/or an active event recognizer determinationmodule 173.

Hit view determination module 172 provides software procedures fordetermining where a sub-event has taken place within one or more viewswhen touch-sensitive display 112 displays more than one view. Views aremade up of controls and other elements that a user can see on thedisplay.

Another aspect of the user interface associated with an application is aset of views, sometimes herein called application views or userinterface windows, in which information is displayed and touch-basedgestures occur. The application views (of a respective application) inwhich a touch is detected optionally correspond to programmatic levelswithin a programmatic or view hierarchy of the application. For example,the lowest level view in which a touch is detected is, optionally,called the hit view, and the set of events that are recognized as properinputs are, optionally, determined based, at least in part, on the hitview of the initial touch that begins a touch-based gesture.

Hit view determination module 172 receives information related tosub-events of a touch-based gesture. When an application has multipleviews organized in a hierarchy, hit view determination module 172identifies a hit view as the lowest view in the hierarchy which shouldhandle the sub-event. In most circumstances, the hit view is the lowestlevel view in which an initiating sub-event occurs (e.g., the firstsub-event in the sequence of sub-events that form an event or potentialevent). Once the hit view is identified by the hit view determinationmodule 172, the hit view typically receives all sub-events related tothe same touch or input source for which it was identified as the hitview.

Active event recognizer determination module 173 determines which viewor views within a view hierarchy should receive a particular sequence ofsub-events. In some embodiments, active event recognizer determinationmodule 173 determines that only the hit view should receive a particularsequence of sub-events. In other embodiments, active event recognizerdetermination module 173 determines that all views that include thephysical location of a sub-event are actively involved views, andtherefore determines that all actively involved views should receive aparticular sequence of sub-events. In other embodiments, even if touchsub-events were entirely confined to the area associated with oneparticular view, views higher in the hierarchy would still remain asactively involved views.

Event dispatcher module 174 dispatches the event information to an eventrecognizer (e.g., event recognizer 180). In embodiments including activeevent recognizer determination module 173, event dispatcher module 174delivers the event information to an event recognizer determined byactive event recognizer determination module 173. In some embodiments,event dispatcher module 174 stores in an event queue the eventinformation, which is retrieved by a respective event receiver 182.

In some embodiments, operating system 126 includes event sorter 170.Alternatively, application 136-1 includes event sorter 170. In yet otherembodiments, event sorter 170 is a stand-alone module, or a part ofanother module stored in memory 102, such as contact/motion module 130.

In some embodiments, application 136-1 includes a plurality of eventhandlers 190 and one or more application views 191, each of whichincludes instructions for handling touch events that occur within arespective view of the application's user interface. Each applicationview 191 of the application 136-1 includes one or more event recognizers180. Typically, a respective application view 191 includes a pluralityof event recognizers 180. In other embodiments, one or more of eventrecognizers 180 are part of a separate module, such as a user interfacekit or a higher level object from which application 136-1 inheritsmethods and other properties. In some embodiments, a respective eventhandler 190 includes one or more of: data updater 176, object updater177, GUI updater 178, and/or event data 179 received from event sorter170. Event handler 190 optionally utilizes or calls data updater 176,object updater 177, or GUI updater 178 to update the applicationinternal state 192. Alternatively, one or more of the application views191 include one or more respective event handlers 190. Also, in someembodiments, one or more of data updater 176, object updater 177, andGUI updater 178 are included in a respective application view 191.

A respective event recognizer 180 receives event information (e.g.,event data 179) from event sorter 170 and identifies an event from theevent information. Event recognizer 180 includes event receiver 182 andevent comparator 184. In some embodiments, event recognizer 180 alsoincludes at least a subset of: metadata 183, and event deliveryinstructions 188 (which optionally include sub-event deliveryinstructions).

Event receiver 182 receives event information from event sorter 170. Theevent information includes information about a sub-event, for example, atouch or a touch movement. Depending on the sub-event, the eventinformation also includes additional information, such as location ofthe sub-event. When the sub-event concerns motion of a touch, the eventinformation optionally also includes speed and direction of thesub-event. In some embodiments, events include rotation of the devicefrom one orientation to another (e.g., from a portrait orientation to alandscape orientation, or vice versa), and the event informationincludes corresponding information about the current orientation (alsocalled device attitude) of the device.

Event comparator 184 compares the event information to predefined eventor sub-event definitions and, based on the comparison, determines anevent or sub-event, or determines or updates the state of an event orsub-event. In some embodiments, event comparator 184 includes eventdefinitions 186. Event definitions 186 contain definitions of events(e.g., predefined sequences of sub-events), for example, event 1(187-1), event 2 (187-2), and others. In some embodiments, sub-events inan event (187) include, for example, touch begin, touch end, touchmovement, touch cancellation, and multiple touching. In one example, thedefinition for event 1 (187-1) is a double tap on a displayed object.The double tap, for example, comprises a first touch (touch begin) onthe displayed object for a predetermined phase, a first liftoff (touchend) for a predetermined phase, a second touch (touch begin) on thedisplayed object for a predetermined phase, and a second liftoff (touchend) for a predetermined phase. In another example, the definition forevent 2 (187-2) is a dragging on a displayed object. The dragging, forexample, comprises a touch (or contact) on the displayed object for apredetermined phase, a movement of the touch across touch-sensitivedisplay 112, and liftoff of the touch (touch end). In some embodiments,the event also includes information for one or more associated eventhandlers 190.

In some embodiments, event definition 187 includes a definition of anevent for a respective user-interface object. In some embodiments, eventcomparator 184 performs a hit test to determine which user-interfaceobject is associated with a sub-event. For example, in an applicationview in which three user-interface objects are displayed ontouch-sensitive display 112, when a touch is detected on touch-sensitivedisplay 112, event comparator 184 performs a hit test to determine whichof the three user-interface objects is associated with the touch(sub-event). If each displayed object is associated with a respectiveevent handler 190, the event comparator uses the result of the hit testto determine which event handler 190 should be activated. For example,event comparator 184 selects an event handler associated with thesub-event and the object triggering the hit test.

In some embodiments, the definition for a respective event (187) alsoincludes delayed actions that delay delivery of the event informationuntil after it has been determined whether the sequence of sub-eventsdoes or does not correspond to the event recognizer's event type.

When a respective event recognizer 180 determines that the series ofsub-events do not match any of the events in event definitions 186, therespective event recognizer 180 enters an event impossible, eventfailed, or event ended state, after which it disregards subsequentsub-events of the touch-based gesture. In this situation, other eventrecognizers, if any, that remain active for the hit view continue totrack and process sub-events of an ongoing touch-based gesture.

In some embodiments, a respective event recognizer 180 includes metadata183 with configurable properties, flags, and/or lists that indicate howthe event delivery system should perform sub-event delivery to activelyinvolved event recognizers. In some embodiments, metadata 183 includesconfigurable properties, flags, and/or lists that indicate how eventrecognizers interact, or are enabled to interact, with one another. Insome embodiments, metadata 183 includes configurable properties, flags,and/or lists that indicate whether sub-events are delivered to varyinglevels in the view or programmatic hierarchy.

In some embodiments, a respective event recognizer 180 activates eventhandler 190 associated with an event when one or more particularsub-events of an event are recognized. In some embodiments, a respectiveevent recognizer 180 delivers event information associated with theevent to event handler 190. Activating an event handler 190 is distinctfrom sending (and deferred sending) sub-events to a respective hit view.In some embodiments, event recognizer 180 throws a flag associated withthe recognized event, and event handler 190 associated with the flagcatches the flag and performs a predefined process.

In some embodiments, event delivery instructions 188 include sub-eventdelivery instructions that deliver event information about a sub-eventwithout activating an event handler. Instead, the sub-event deliveryinstructions deliver event information to event handlers associated withthe series of sub-events or to actively involved views. Event handlersassociated with the series of sub-events or with actively involved viewsreceive the event information and perform a predetermined process.

In some embodiments, data updater 176 creates and updates data used inapplication 136-1. For example, data updater 176 updates the telephonenumber used in contacts module 137, or stores a video file used in videoplayer module. In some embodiments, object updater 177 creates andupdates objects used in application 136-1. For example, object updater177 creates a new user-interface object or updates the position of auser-interface object. GUI updater 178 updates the GUI. For example, GUIupdater 178 prepares display information and sends it to graphics module132 for display on a touch-sensitive display.

In some embodiments, event handler(s) 190 includes or has access to dataupdater 176, object updater 177, and GUI updater 178. In someembodiments, data updater 176, object updater 177, and GUI updater 178are included in a single module of a respective application 136-1 orapplication view 191. In other embodiments, they are included in two ormore software modules.

It shall be understood that the foregoing discussion regarding eventhandling of user touches on touch-sensitive displays also applies toother forms of user inputs to operate multifunction devices 100 withinput devices, not all of which are initiated on touch screens. Forexample, mouse movement and mouse button presses, optionally coordinatedwith single or multiple keyboard presses or holds; contact movementssuch as taps, drags, scrolls, etc. on touchpads; pen stylus inputs;movement of the device; oral instructions; detected eye movements;biometric inputs; and/or any combination thereof are optionally utilizedas inputs corresponding to sub-events which define an event to berecognized.

FIG. 2 illustrates a portable multifunction device 100 having a touchscreen 112 in accordance with some embodiments. The touch screenoptionally displays one or more graphics within user interface (UI) 200.In this embodiment, as well as others described below, a user is enabledto select one or more of the graphics by making a gesture on thegraphics, for example, with one or more fingers 202 (not drawn to scalein the figure) or one or more styluses 203 (not drawn to scale in thefigure). In some embodiments, selection of one or more graphics occurswhen the user breaks contact with the one or more graphics. In someembodiments, the gesture optionally includes one or more taps, one ormore swipes (from left to right, right to left, upward and/or downward),and/or a rolling of a finger (from right to left, left to right, upwardand/or downward) that has made contact with device 100. In someimplementations or circumstances, inadvertent contact with a graphicdoes not select the graphic. For example, a swipe gesture that sweepsover an application icon optionally does not select the correspondingapplication when the gesture corresponding to selection is a tap.

Device 100 optionally also include one or more physical buttons, such as“home” or menu button 204. As described previously, menu button 204 is,optionally, used to navigate to any application 136 in a set ofapplications that are, optionally, executed on device 100.Alternatively, in some embodiments, the menu button is implemented as asoft key in a GUI displayed on touch screen 112.

In some embodiments, device 100 includes touch screen 112, menu button204, push button 206 for powering the device on/off and locking thedevice, volume adjustment button(s) 208, subscriber identity module(SIM) card slot 210, headset jack 212, and docking/charging externalport 124. Push button 206 is, optionally, used to turn the power on/offon the device by depressing the button and holding the button in thedepressed state for a predefined time interval; to lock the device bydepressing the button and releasing the button before the predefinedtime interval has elapsed; and/or to unlock the device or initiate anunlock process. In an alternative embodiment, device 100 also acceptsverbal input for activation or deactivation of some functions throughmicrophone 113. Device 100 also, optionally, includes one or morecontact intensity sensors 165 for detecting intensity of contacts ontouch screen 112 and/or one or more tactile output generators 167 forgenerating tactile outputs for a user of device 100.

FIG. 3 is a block diagram of an exemplary multifunction device with adisplay and a touch-sensitive surface in accordance with someembodiments. Device 300 need not be portable. In some embodiments,device 300 is a laptop computer, a desktop computer, a tablet computer,a multimedia player device, a navigation device, an educational device(such as a child's learning toy), a gaming system, or a control device(e.g., a home or industrial controller). Device 300 typically includesone or more processing units (CPUs) 310, one or more network or othercommunications interfaces 360, memory 370, and one or more communicationbuses 320 for interconnecting these components. Communication buses 320optionally include circuitry (sometimes called a chipset) thatinterconnects and controls communications between system components.Device 300 includes input/output (I/O) interface 330 comprising display340, which is typically a touch screen display. I/O interface 330 alsooptionally includes a keyboard and/or mouse (or other pointing device)350 and touchpad 355, tactile output generator 357 for generatingtactile outputs on device 300 (e.g., similar to tactile outputgenerator(s) 167 described above with reference to FIG. 1A), sensors 359(e.g., optical, acceleration, proximity, touch-sensitive, and/or contactintensity sensors similar to contact intensity sensor(s) 165 describedabove with reference to FIG. 1A). Memory 370 includes high-speed randomaccess memory, such as DRAM, SRAM, DDR RAM, or other random access solidstate memory devices; and optionally includes non-volatile memory, suchas one or more magnetic disk storage devices, optical disk storagedevices, flash memory devices, or other non-volatile solid state storagedevices. Memory 370 optionally includes one or more storage devicesremotely located from CPU(s) 310. In some embodiments, memory 370 storesprograms, modules, and data structures analogous to the programs,modules, and data structures stored in memory 102 of portablemultifunction device 100 (FIG. 1A), or a subset thereof. Furthermore,memory 370 optionally stores additional programs, modules, and datastructures not present in memory 102 of portable multifunction device100. For example, memory 370 of device 300 optionally stores drawingmodule 380, presentation module 382, word processing module 384, websitecreation module 386, disk authoring module 388, and/or spreadsheetmodule 390, while memory 102 of portable multifunction device 100 (FIG.1A) optionally does not store these modules.

Each of the above-identified elements in FIG. 3 is, optionally, storedin one or more of the previously mentioned memory devices. Each of theabove-identified modules corresponds to a set of instructions forperforming a function described above. The above-identified modules orcomputer programs (e.g., sets of instructions or including instructions)need not be implemented as separate software programs (such as computerprograms (e.g., including instructions)), procedures, or modules, andthus various subsets of these modules are, optionally, combined orotherwise rearranged in various embodiments. In some embodiments, memory370 optionally stores a subset of the modules and data structuresidentified above. Furthermore, memory 370 optionally stores additionalmodules and data structures not described above.

Attention is now directed towards embodiments of user interfaces thatare, optionally, implemented on, for example, portable multifunctiondevice 100.

FIG. 4A illustrates an exemplary user interface for a menu ofapplications on portable multifunction device 100 in accordance withsome embodiments. Similar user interfaces are, optionally, implementedon device 300. In some embodiments, user interface 400 includes thefollowing elements, or a subset or superset thereof:

-   -   Signal strength indicator(s) 402 for wireless communication(s),        such as cellular and Wi-Fi signals;    -   Time 404;    -   Bluetooth indicator 405;    -   Battery status indicator 406;    -   Tray 408 with icons for frequently used applications, such as:        -   Icon 416 for telephone module 138, labeled “Phone,” which            optionally includes an indicator 414 of the number of missed            calls or voicemail messages;        -   Icon 418 for e-mail client module 140, labeled “Mail,” which            optionally includes an indicator 410 of the number of unread            e-mails;        -   Icon 420 for browser module 147, labeled “Browser;” and        -   Icon 422 for video and music player module 152, also            referred to as iPod (trademark of Apple Inc.) module 152,            labeled “iPod;” and    -   Icons for other applications, such as:        -   Icon 424 for IM module 141, labeled “Messages;”        -   Icon 426 for calendar module 148, labeled “Calendar;”        -   Icon 428 for image management module 144, labeled “Photos;”        -   Icon 430 for camera module 143, labeled “Camera;”        -   Icon 432 for online video module 155, labeled “Online            Video;”        -   Icon 434 for stocks widget 149-2, labeled “Stocks;”        -   Icon 436 for map module 154, labeled “Maps;”        -   Icon 438 for weather widget 149-1, labeled “Weather;”        -   Icon 440 for alarm clock widget 149-4, labeled “Clock;”        -   Icon 442 for workout support module 142, labeled “Workout            Support;”        -   Icon 444 for notes module 153, labeled “Notes;” and        -   Icon 446 for a settings application or module, labeled            “Settings,” which provides access to settings for device 100            and its various applications 136.

It should be noted that the icon labels illustrated in FIG. 4A aremerely exemplary. For example, icon 422 for video and music playermodule 152 is labeled “Music” or “Music Player.” Other labels are,optionally, used for various application icons. In some embodiments, alabel for a respective application icon includes a name of anapplication corresponding to the respective application icon. In someembodiments, a label for a particular application icon is distinct froma name of an application corresponding to the particular applicationicon.

FIG. 4B illustrates an exemplary user interface on a device (e.g.,device 300, FIG. 3 ) with a touch-sensitive surface 451 (e.g., a tabletor touchpad 355, FIG. 3 ) that is separate from the display 450 (e.g.,touch screen display 112). Device 300 also, optionally, includes one ormore contact intensity sensors (e.g., one or more of sensors 359) fordetecting intensity of contacts on touch-sensitive surface 451 and/orone or more tactile output generators 357 for generating tactile outputsfor a user of device 300.

Although some of the examples that follow will be given with referenceto inputs on touch screen display 112 (where the touch-sensitive surfaceand the display are combined), in some embodiments, the device detectsinputs on a touch-sensitive surface that is separate from the display,as shown in FIG. 4B. In some embodiments, the touch-sensitive surface(e.g., 451 in FIG. 4B) has a primary axis (e.g., 452 in FIG. 4B) thatcorresponds to a primary axis (e.g., 453 in FIG. 4B) on the display(e.g., 450). In accordance with these embodiments, the device detectscontacts (e.g., 460 and 462 in FIG. 4B) with the touch-sensitive surface451 at locations that correspond to respective locations on the display(e.g., in FIG. 4B, 460 corresponds to 468 and 462 corresponds to 470).In this way, user inputs (e.g., contacts 460 and 462, and movementsthereof) detected by the device on the touch-sensitive surface (e.g.,451 in FIG. 4B) are used by the device to manipulate the user interfaceon the display (e.g., 450 in FIG. 4B) of the multifunction device whenthe touch-sensitive surface is separate from the display. It should beunderstood that similar methods are, optionally, used for other userinterfaces described herein.

Additionally, while the following examples are given primarily withreference to finger inputs (e.g., finger contacts, finger tap gestures,finger swipe gestures), it should be understood that, in someembodiments, one or more of the finger inputs are replaced with inputfrom another input device (e.g., a mouse-based input or stylus input).For example, a swipe gesture is, optionally, replaced with a mouse click(e.g., instead of a contact) followed by movement of the cursor alongthe path of the swipe (e.g., instead of movement of the contact). Asanother example, a tap gesture is, optionally, replaced with a mouseclick while the cursor is located over the location of the tap gesture(e.g., instead of detection of the contact followed by ceasing to detectthe contact). Similarly, when multiple user inputs are simultaneouslydetected, it should be understood that multiple computer mice are,optionally, used simultaneously, or a mouse and finger contacts are,optionally, used simultaneously.

FIG. 5A illustrates exemplary personal electronic device 500. Device 500includes body 502. In some embodiments, device 500 can include some orall of the features described with respect to devices 100 and 300 (e.g.,FIGS. 1A-4B). In some embodiments, device 500 has touch-sensitivedisplay screen 504, hereafter touch screen 504. Alternatively, or inaddition to touch screen 504, device 500 has a display and atouch-sensitive surface. As with devices 100 and 300, in someembodiments, touch screen 504 (or the touch-sensitive surface)optionally includes one or more intensity sensors for detectingintensity of contacts (e.g., touches) being applied. The one or moreintensity sensors of touch screen 504 (or the touch-sensitive surface)can provide output data that represents the intensity of touches. Theuser interface of device 500 can respond to touches based on theirintensity, meaning that touches of different intensities can invokedifferent user interface operations on device 500.

Exemplary techniques for detecting and processing touch intensity arefound, for example, in related applications: International PatentApplication Serial No. PCT/US2013/040061, titled “Device, Method, andGraphical User Interface for Displaying User Interface ObjectsCorresponding to an Application,” filed May 8, 2013, published as WIPOPublication No. WO/2013/169849, and International Patent ApplicationSerial No. PCT/US2013/069483, titled “Device, Method, and Graphical UserInterface for Transitioning Between Touch Input to Display OutputRelationships,” filed Nov. 11, 2013, published as WIPO Publication No.WO/2014/105276, each of which is hereby incorporated by reference intheir entirety.

In some embodiments, device 500 has one or more input mechanisms 506 and508. Input mechanisms 506 and 508, if included, can be physical.Examples of physical input mechanisms include push buttons and rotatablemechanisms. In some embodiments, device 500 has one or more attachmentmechanisms. Such attachment mechanisms, if included, can permitattachment of device 500 with, for example, hats, eyewear, earrings,necklaces, shirts, jackets, bracelets, watch straps, chains, trousers,belts, shoes, purses, backpacks, and so forth. These attachmentmechanisms permit device 500 to be worn by a user.

FIG. 5B depicts exemplary personal electronic device 500. In someembodiments, device 500 can include some or all of the componentsdescribed with respect to FIGS. 1A, 1B, and 3. Device 500 has bus 512that operatively couples I/O section 514 with one or more computerprocessors 516 and memory 518. I/O section 514 can be connected todisplay 504, which can have touch-sensitive component 522 and,optionally, intensity sensor 524 (e.g., contact intensity sensor). Inaddition, I/O section 514 can be connected with communication unit 530for receiving application and operating system data, using Wi-Fi,Bluetooth, near field communication (NFC), cellular, and/or otherwireless communication techniques. Device 500 can include inputmechanisms 506 and/or 508. Input mechanism 506 is, optionally, arotatable input device or a depressible and rotatable input device, forexample. Input mechanism 508 is, optionally, a button, in some examples.

Input mechanism 508 is, optionally, a microphone, in some examples.Personal electronic device 500 optionally includes various sensors, suchas GPS sensor 532, accelerometer 534, directional sensor 540 (e.g.,compass), gyroscope 536, motion sensor 538, and/or a combinationthereof, all of which can be operatively connected to I/O section 514.

Memory 518 of personal electronic device 500 can include one or morenon-transitory computer-readable storage mediums, for storingcomputer-executable instructions, which, when executed by one or morecomputer processors 516, for example, can cause the computer processorsto perform the techniques described below, including processes 1400 and1500 (FIGS. 14A-14B and FIGS. 15A-15B). A computer-readable storagemedium can be any medium that can tangibly contain or storecomputer-executable instructions for use by or in connection with theinstruction execution system, apparatus, or device. In some examples,the storage medium is a transitory computer-readable storage medium. Insome examples, the storage medium is a non-transitory computer-readablestorage medium. The non-transitory computer-readable storage medium caninclude, but is not limited to, magnetic, optical, and/or semiconductorstorages. Examples of such storage include magnetic disks, optical discsbased on CD, DVD, or Blu-ray technologies, as well as persistentsolid-state memory such as flash, solid-state drives, and the like.Personal electronic device 500 is not limited to the components andconfiguration of FIG. 5B, but can include other or additional componentsin multiple configurations.

As used here, the term “affordance” refers to a user-interactivegraphical user interface object that is, optionally, displayed on thedisplay screen of devices 100, 300, and/or 500 (FIGS. 1A, 3, and 5A-5B).For example, an image (e.g., icon), a button, and text (e.g., hyperlink)each optionally constitute an affordance.

As used herein, the term “focus selector” refers to an input elementthat indicates a current part of a user interface with which a user isinteracting. In some implementations that include a cursor or otherlocation marker, the cursor acts as a “focus selector” so that when aninput (e.g., a press input) is detected on a touch-sensitive surface(e.g., touchpad 355 in FIG. 3 or touch-sensitive surface 451 in FIG. 4B)while the cursor is over a particular user interface element (e.g., abutton, window, slider, or other user interface element), the particularuser interface element is adjusted in accordance with the detectedinput. In some implementations that include a touch screen display(e.g., touch-sensitive display system 112 in FIG. 1A or touch screen 112in FIG. 4A) that enables direct interaction with user interface elementson the touch screen display, a detected contact on the touch screen actsas a “focus selector” so that when an input (e.g., a press input by thecontact) is detected on the touch screen display at a location of aparticular user interface element (e.g., a button, window, slider, orother user interface element), the particular user interface element isadjusted in accordance with the detected input. In some implementations,focus is moved from one region of a user interface to another region ofthe user interface without corresponding movement of a cursor ormovement of a contact on a touch screen display (e.g., by using a tabkey or arrow keys to move focus from one button to another button); inthese implementations, the focus selector moves in accordance withmovement of focus between different regions of the user interface.Without regard to the specific form taken by the focus selector, thefocus selector is generally the user interface element (or contact on atouch screen display) that is controlled by the user so as tocommunicate the user's intended interaction with the user interface(e.g., by indicating, to the device, the element of the user interfacewith which the user is intending to interact). For example, the locationof a focus selector (e.g., a cursor, a contact, or a selection box) overa respective button while a press input is detected on thetouch-sensitive surface (e.g., a touchpad or touch screen) will indicatethat the user is intending to activate the respective button (as opposedto other user interface elements shown on a display of the device).

As used in the specification and claims, the term “characteristicintensity” of a contact refers to a characteristic of the contact basedon one or more intensities of the contact. In some embodiments, thecharacteristic intensity is based on multiple intensity samples. Thecharacteristic intensity is, optionally, based on a predefined number ofintensity samples, or a set of intensity samples collected during apredetermined time period (e.g., 0.05, 0.1, 0.2, 0.5, 1, 2, 5, 10seconds) relative to a predefined event (e.g., after detecting thecontact, prior to detecting liftoff of the contact, before or afterdetecting a start of movement of the contact, prior to detecting an endof the contact, before or after detecting an increase in intensity ofthe contact, and/or before or after detecting a decrease in intensity ofthe contact). A characteristic intensity of a contact is, optionally,based on one or more of: a maximum value of the intensities of thecontact, a mean value of the intensities of the contact, an averagevalue of the intensities of the contact, a top 10 percentile value ofthe intensities of the contact, a value at the half maximum of theintensities of the contact, a value at the 90 percent maximum of theintensities of the contact, or the like. In some embodiments, theduration of the contact is used in determining the characteristicintensity (e.g., when the characteristic intensity is an average of theintensity of the contact over time). In some embodiments, thecharacteristic intensity is compared to a set of one or more intensitythresholds to determine whether an operation has been performed by auser. For example, the set of one or more intensity thresholdsoptionally includes a first intensity threshold and a second intensitythreshold. In this example, a contact with a characteristic intensitythat does not exceed the first threshold results in a first operation, acontact with a characteristic intensity that exceeds the first intensitythreshold and does not exceed the second intensity threshold results ina second operation, and a contact with a characteristic intensity thatexceeds the second threshold results in a third operation. In someembodiments, a comparison between the characteristic intensity and oneor more thresholds is used to determine whether or not to perform one ormore operations (e.g., whether to perform a respective operation orforgo performing the respective operation), rather than being used todetermine whether to perform a first operation or a second operation.

FIG. 5C illustrates detecting a plurality of contacts 552A-552E ontouch-sensitive display screen 504 with a plurality of intensity sensors524A-524D. FIG. 5C additionally includes intensity diagrams that showthe current intensity measurements of the intensity sensors 524A-524Drelative to units of intensity. In this example, the intensitymeasurements of intensity sensors 524A and 524D are each 9 units ofintensity, and the intensity measurements of intensity sensors 524B and524C are each 7 units of intensity. In some implementations, anaggregate intensity is the sum of the intensity measurements of theplurality of intensity sensors 524A-524D, which in this example is 32intensity units. In some embodiments, each contact is assigned arespective intensity that is a portion of the aggregate intensity. FIG.5D illustrates assigning the aggregate intensity to contacts 552A-552Ebased on their distance from the center of force 554. In this example,each of contacts 552A, 552B, and 552E are assigned an intensity ofcontact of 8 intensity units of the aggregate intensity, and each ofcontacts 552C and 552D are assigned an intensity of contact of 4intensity units of the aggregate intensity. More generally, in someimplementations, each contact j is assigned a respective intensity Ijthat is a portion of the aggregate intensity, A, in accordance with apredefined mathematical function, Ij=A·(Dj/ΣDi), where Dj is thedistance of the respective contact j to the center of force, and ΣDi isthe sum of the distances of all the respective contacts (e.g., i=1 tolast) to the center of force. The operations described with reference toFIGS. 5C-5D can be performed using an electronic device similar oridentical to device 100, 300, or 500. In some embodiments, acharacteristic intensity of a contact is based on one or moreintensities of the contact. In some embodiments, the intensity sensorsare used to determine a single characteristic intensity (e.g., a singlecharacteristic intensity of a single contact). It should be noted thatthe intensity diagrams are not part of a displayed user interface, butare included in FIGS. 5C-5D to aid the reader.

In some embodiments, a portion of a gesture is identified for purposesof determining a characteristic intensity. For example, atouch-sensitive surface optionally receives a continuous swipe contacttransitioning from a start location and reaching an end location, atwhich point the intensity of the contact increases. In this example, thecharacteristic intensity of the contact at the end location is,optionally, based on only a portion of the continuous swipe contact, andnot the entire swipe contact (e.g., only the portion of the swipecontact at the end location). In some embodiments, a smoothing algorithmis, optionally, applied to the intensities of the swipe contact prior todetermining the characteristic intensity of the contact. For example,the smoothing algorithm optionally includes one or more of: anunweighted sliding-average smoothing algorithm, a triangular smoothingalgorithm, a median filter smoothing algorithm, and/or an exponentialsmoothing algorithm. In some circumstances, these smoothing algorithmseliminate narrow spikes or dips in the intensities of the swipe contactfor purposes of determining a characteristic intensity.

The intensity of a contact on the touch-sensitive surface is,optionally, characterized relative to one or more intensity thresholds,such as a contact-detection intensity threshold, a light press intensitythreshold, a deep press intensity threshold, and/or one or more otherintensity thresholds. In some embodiments, the light press intensitythreshold corresponds to an intensity at which the device will performoperations typically associated with clicking a button of a physicalmouse or a trackpad. In some embodiments, the deep press intensitythreshold corresponds to an intensity at which the device will performoperations that are different from operations typically associated withclicking a button of a physical mouse or a trackpad. In someembodiments, when a contact is detected with a characteristic intensitybelow the light press intensity threshold (e.g., and above a nominalcontact-detection intensity threshold below which the contact is nolonger detected), the device will move a focus selector in accordancewith movement of the contact on the touch-sensitive surface withoutperforming an operation associated with the light press intensitythreshold or the deep press intensity threshold. Generally, unlessotherwise stated, these intensity thresholds are consistent betweendifferent sets of user interface figures.

An increase of characteristic intensity of the contact from an intensitybelow the light press intensity threshold to an intensity between thelight press intensity threshold and the deep press intensity thresholdis sometimes referred to as a “light press” input. An increase ofcharacteristic intensity of the contact from an intensity below the deeppress intensity threshold to an intensity above the deep press intensitythreshold is sometimes referred to as a “deep press” input. An increaseof characteristic intensity of the contact from an intensity below thecontact-detection intensity threshold to an intensity between thecontact-detection intensity threshold and the light press intensitythreshold is sometimes referred to as detecting the contact on thetouch-surface. A decrease of characteristic intensity of the contactfrom an intensity above the contact-detection intensity threshold to anintensity below the contact-detection intensity threshold is sometimesreferred to as detecting liftoff of the contact from the touch-surface.In some embodiments, the contact-detection intensity threshold is zero.In some embodiments, the contact-detection intensity threshold isgreater than zero.

In some embodiments described herein, one or more operations areperformed in response to detecting a gesture that includes a respectivepress input or in response to detecting the respective press inputperformed with a respective contact (or a plurality of contacts), wherethe respective press input is detected based at least in part ondetecting an increase in intensity of the contact (or plurality ofcontacts) above a press-input intensity threshold. In some embodiments,the respective operation is performed in response to detecting theincrease in intensity of the respective contact above the press-inputintensity threshold (e.g., a “down stroke” of the respective pressinput). In some embodiments, the press input includes an increase inintensity of the respective contact above the press-input intensitythreshold and a subsequent decrease in intensity of the contact belowthe press-input intensity threshold, and the respective operation isperformed in response to detecting the subsequent decrease in intensityof the respective contact below the press-input threshold (e.g., an “upstroke” of the respective press input).

FIGS. 5E-5H illustrate detection of a gesture that includes a pressinput that corresponds to an increase in intensity of a contact 562 froman intensity below a light press intensity threshold (e.g., “IT_(L)”) inFIG. 5E, to an intensity above a deep press intensity threshold (e.g.,“IT_(D)”) in FIG. 5H. The gesture performed with contact 562 is detectedon touch-sensitive surface 560 while cursor 576 is displayed overapplication icon 572B corresponding to App 2, on a displayed userinterface 570 that includes application icons 572A-572D displayed inpredefined region 574. In some embodiments, the gesture is detected ontouch-sensitive display 504. The intensity sensors detect the intensityof contacts on touch-sensitive surface 560. The device determines thatthe intensity of contact 562 peaked above the deep press intensitythreshold (e.g., “IT_(D)”). Contact 562 is maintained on touch-sensitivesurface 560. In response to the detection of the gesture, and inaccordance with contact 562 having an intensity that goes above the deeppress intensity threshold (e.g., “IT_(D)”) during the gesture,reduced-scale representations 578A-578C (e.g., thumbnails) of recentlyopened documents for App 2 are displayed, as shown in FIGS. 5F-5H. Insome embodiments, the intensity, which is compared to the one or moreintensity thresholds, is the characteristic intensity of a contact. Itshould be noted that the intensity diagram for contact 562 is not partof a displayed user interface, but is included in FIGS. 5E-5H to aid thereader.

In some embodiments, the display of representations 578A-578C includesan animation. For example, representation 578A is initially displayed inproximity of application icon 572B, as shown in FIG. 5F. As theanimation proceeds, representation 578A moves upward and representation578B is displayed in proximity of application icon 572B, as shown inFIG. 5G. Then, representations 578A moves upward, 578B moves upwardtoward representation 578A, and representation 578C is displayed inproximity of application icon 572B, as shown in FIG. 5H. Representations578A-578C form an array above icon 572B. In some embodiments, theanimation progresses in accordance with an intensity of contact 562, asshown in FIGS. 5F-5G, where the representations 578A-578C appear andmove upwards as the intensity of contact 562 increases toward the deeppress intensity threshold (e.g., “IT_(D)”). In some embodiments, theintensity, on which the progress of the animation is based, is thecharacteristic intensity of the contact. The operations described withreference to FIGS. 5E-5H can be performed using an electronic devicesimilar or identical to device 100, 300, or 500.

In some embodiments, the device employs intensity hysteresis to avoidaccidental inputs sometimes termed “jitter,” where the device defines orselects a hysteresis intensity threshold with a predefined relationshipto the press-input intensity threshold (e.g., the hysteresis intensitythreshold is X intensity units lower than the press-input intensitythreshold or the hysteresis intensity threshold is 75%, 90%, or somereasonable proportion of the press-input intensity threshold). Thus, insome embodiments, the press input includes an increase in intensity ofthe respective contact above the press-input intensity threshold and asubsequent decrease in intensity of the contact below the hysteresisintensity threshold that corresponds to the press-input intensitythreshold, and the respective operation is performed in response todetecting the subsequent decrease in intensity of the respective contactbelow the hysteresis intensity threshold (e.g., an “up stroke” of therespective press input). Similarly, in some embodiments, the press inputis detected only when the device detects an increase in intensity of thecontact from an intensity at or below the hysteresis intensity thresholdto an intensity at or above the press-input intensity threshold and,optionally, a subsequent decrease in intensity of the contact to anintensity at or below the hysteresis intensity, and the respectiveoperation is performed in response to detecting the press input (e.g.,the increase in intensity of the contact or the decrease in intensity ofthe contact, depending on the circumstances).

For ease of explanation, the descriptions of operations performed inresponse to a press input associated with a press-input intensitythreshold or in response to a gesture including the press input are,optionally, triggered in response to detecting either: an increase inintensity of a contact above the press-input intensity threshold, anincrease in intensity of a contact from an intensity below thehysteresis intensity threshold to an intensity above the press-inputintensity threshold, a decrease in intensity of the contact below thepress-input intensity threshold, and/or a decrease in intensity of thecontact below the hysteresis intensity threshold corresponding to thepress-input intensity threshold. Additionally, in examples where anoperation is described as being performed in response to detecting adecrease in intensity of a contact below the press-input intensitythreshold, the operation is, optionally, performed in response todetecting a decrease in intensity of the contact below a hysteresisintensity threshold corresponding to, and lower than, the press-inputintensity threshold.

FIG. 6 illustrates exemplary devices connected via one or morecommunication channels to participate in a transaction in accordancewith some embodiments. One or more exemplary electronic devices (e.g.,devices 100, 300, and 500) are configured to optionally detect input(e.g., a particular user input, an NFC field) and optionally transmitpayment information (e.g., using NFC). The one or more electronicdevices optionally include NFC hardware and are configured to beNFC-enabled.

The electronic devices (e.g., devices 100, 300, and 500) are optionallyconfigured to store payment account information associated with each ofone or more payment accounts. Payment account information includes, forexample, one or more of: a person's or company's name, a billingaddress, a login, a password, an account number, an expiration date, asecurity code, a telephone number, a bank associated with the paymentaccount (e.g., an issuing bank), and a card network identifier. In someembodiments, payment account information includes include an image, suchas a picture of a payment card (e.g., taken by the device and/orreceived at the device). In some embodiments, the electronic devicesreceive user input, including at least some payment account information(e.g., receiving user-entered credit, debit, account, or gift cardnumber and expiration date). In some embodiments, the electronic devicesdetect at least some payment account information from an image (e.g., ofa payment card captured by a camera sensor of the device). In someembodiments, the electronic devices receive at least some paymentaccount information from another device (e.g., another user device or aserver). In some embodiments, the electronic device receives paymentaccount information from a server associated with another service forwhich an account for a user or user device previously made a purchase oridentified payment account data (e.g., an app for renting or sellingaudio and/or video files).

In some embodiments, a payment account is added to an electronic device(e.g., device 100, 300, and 500), such that payment account informationis securely stored on the electronic device. In some embodiments, aftera user initiates such process, the electronic device transmitsinformation for the payment account to a transaction-coordinationserver, which then communicates with a server operated by a paymentnetwork for the account (e.g., a payment server) to ensure validity ofthe information. The electronic device is optionally configured toreceive a script from the server that allows the electronic device toprogram payment information for the account onto the secure element.

In some embodiments, communication among electronic devices 100, 300,and 500 facilitates transactions (e.g., generally or specifictransactions). For example, a first electronic device (e.g., 100) canserve as a provisioning or managing device and can send notifications ofnew or updated payment account data (e.g., information for a newaccount, updated information for an existing account, and/or an alertpertaining to an existing account) to a second electronic device (e.g.,500). In another example, a first electronic device (e.g., 100) can senddata to a second election device, wherein the data reflects informationabout payment transactions facilitated at the first electronic device.The information optionally includes one or more of: a payment amount, anaccount used, a time of purchase, and whether a default account waschanged. The second device (e.g., 500) optionally uses such informationto update a default payment account (e.g., based on a learning algorithmor explicit user input).

Electronic devices (e.g., 100, 300, 500) are configured to communicatewith each other over any of a variety of networks. For example, thedevices communicate using a Bluetooth connection 608 (e.g., whichincludes a traditional Bluetooth connection or a Bluetooth Low Energyconnection) or using a Wi-Fi network 606. Communications among userdevices are, optionally, conditioned to reduce the possibility ofinappropriately sharing information across devices. For example,communications relating to payment information requires that thecommunicating devices be paired (e.g., be associated with each other viaan explicit user interaction) or be associated with a same user account.

In some embodiments, an electronic device (e.g., 100, 300, 500) is usedto communicate with a point-of-sale (POS) payment terminal 600, which isoptionally NFC-enabled. The communication optionally occurs using avariety of communication channels and/or technologies. In someembodiments, an electronic device (e.g., 100, 300, 500) communicateswith payment terminal 600 using an NFC channel 610. In some embodiments,payment terminal 600 communicates with an electronic device (e.g., 100,300, 500) using a peer-to-peer NFC mode. The electronic device (e.g.,100, 300, 500) is optionally configured to transmit a signal to paymentterminal 600 that includes payment information for a payment account(e.g., a default account or an account selected for the particulartransaction).

In some embodiments, proceeding with a transaction includes transmittinga signal that includes payment information for an account, such as apayment account. In some embodiments, proceeding with the transactionincludes reconfiguring the electronic device (e.g., 100, 300, 500) torespond as a contactless payment card, such as an NFC-enabledcontactless payment card, and then transmitting credentials of theaccount via NFC, such as to payment terminal 600. In some embodiments,subsequent to transmitting credentials of the account via NFC, theelectronic device reconfigures to not respond as a contactless paymentcard (e.g., requiring authorization before again reconfigured to respondas a contactless payment card via NFC).

In some embodiments, the generation of and/or transmission of the signalis controlled by a secure element in the electronic device (e.g., 100,300, 500). The secure element optionally requires a particular userinput prior to releasing payment information. For example, the secureelement optionally requires detection that the electronic device isbeing worn, detection of a button press, detection of entry of apasscode, detection of a touch, detection of one or more optionselections (e.g., received while interacting with an application),detection of a fingerprint signature, detection of a voice or voicecommand, and or detection of a gesture or movement (e.g., rotation oracceleration). In some embodiments, if a communication channel (e.g., anNFC communication channel) with another device (e.g., payment terminal600) is established within a defined time period from detection of theinput, the secure element releases payment information to be transmittedto the other device (e.g., payment terminal 600). In some embodiments,the secure element is a hardware component that controls release ofsecure information. In some embodiments, the secure element is asoftware component that controls release of secure information.

In some embodiments, protocols related to transaction participationdepend on, for example, device types. For example, a condition forgenerating and/or transmitting payment information can be different fora wearable device (e.g., device 500) and a phone (e.g., device 100). Forexample, a generation and/or transmission condition for a wearabledevice includes detecting that a button has been pressed (e.g., after asecurity verification), while a corresponding condition for a phone doesnot require button-depression and instead requires detection ofparticular interaction with an application. In some embodiments, acondition for transmitting and/or releasing payment information includesreceiving particular input on each of multiple devices. For example,release of payment information optionally requires detection of afingerprint and/or passcode at the device (e.g., device 100) anddetection of a mechanical input (e.g., button press) on another device(e.g., device 500).

Payment terminal 600 optionally uses the payment information to generatea signal to transmit to a payment server 604 to determine whether thepayment is authorized. Payment server 604 optionally includes any deviceor system configured to receive payment information associated with apayment account and to determine whether a proposed purchase isauthorized. In some embodiments, payment server 604 includes a server ofan issuing bank. Payment terminal 600 communicates with payment server604 directly or indirectly via one or more other devices or systems(e.g., a server of an acquiring bank and/or a server of a card network).

Payment server 604 optionally uses at least some of the paymentinformation to identify a user account from among a database of useraccounts (e.g., 602). For example, each user account includes paymentinformation. An account is, optionally, located by locating an accountwith particular payment information matching that from the POScommunication. In some embodiments, a payment is denied when providedpayment information is not consistent (e.g., an expiration date does notcorrespond to a credit, debit, or gift card number) or when no accountincludes payment information matching that from the POS communication.

In some embodiments, data for the user account further identifies one ormore restrictions (e.g., credit limits); current or previous balances;previous transaction dates, locations and/or amounts; account status(e.g., active or frozen), and/or authorization instructions. In someembodiments, the payment server (e.g., 604) uses such data to determinewhether to authorize a payment. For example, a payment server denies apayment when a purchase amount added to a current balance would resultin exceeding an account limit, when an account is frozen, when aprevious transaction amount exceeds a threshold, or when a previoustransaction count or frequency exceeds a threshold.

In some embodiments, payment server 604 responds to POS payment terminal600 with an indication as to whether a proposed purchase is authorizedor denied. In some embodiments, POS payment terminal 600 transmits asignal to the electronic device (e.g., 100, 300, 500) to identify theresult. For example, POS payment terminal 600 sends a receipt to theelectronic device (e.g., 100, 300, 500) when a purchase is authorized(e.g., via a transaction-coordination server that manages a transactionapp on the user device). In some instances, POS payment terminal 600presents an output (e.g., a visual or audio output) indicative of theresult. Payment can be sent to a merchant as part of the authorizationprocess or can be subsequently sent.

In some embodiments, the electronic device (e.g., 100, 300, 500)participates in a transaction that is completed without the involvementof POS payment terminal 600. For example, upon detecting that amechanical input has been received, a secure element in the electronicdevice (e.g., 100, 300, 500) releases payment information to allow anapplication on the electronic device to access the information (e.g.,and to transmit the information to a server associated with theapplication).

In some embodiments, the electronic device (e.g., 100, 300, 500) is in alocked state or an unlocked state. In the locked state, the electronicdevice is powered on and operational but is prevented from performing apredefined set of operations in response to the user input. Thepredefined set of operations optionally includes navigation between userinterfaces, activation or deactivation of a predefined set of functions,and activation or deactivation of certain applications. The locked statecan be used to prevent unintentional or unauthorized use of somefunctionality of the electronic device or activation or deactivation ofsome functions on the electronic device. In the unlocked state, theelectronic device 100 is power on and operational and is not preventedfrom performing at least a portion of the predefined set of operationsthat cannot be performed while in the locked state.

When the device is in the locked state, the device is said to be locked.In some embodiments, the device in the locked state optionally respondsto a limited set of user inputs, including input that corresponds to anattempt to transition the device to the unlocked state or input thatcorresponds to powering the device off.

In some embodiments, a secure element (e.g., 115) is a hardwarecomponent (e.g., a secure microcontroller chip) configured to securelystore data or an algorithm such that the securely stored data is notaccessible by the device without proper authentication information froma user of the device. Keeping the securely stored data in a secureelement that is separate from other storage on the device preventsaccess to the securely stored data even if other storage locations onthe device are compromised (e.g., by malicious code or other attempts tocompromise information stored on the device). In some embodiments, thesecure element provides (or releases) payment information (e.g., anaccount number and/or a transaction-specific dynamic security code). Insome embodiments, the secure element provides (or releases) the paymentinformation in response to the device receiving authorization, such as auser authentication (e.g., fingerprint authentication; passcodeauthentication; detecting double-press of a hardware button when thedevice is in an unlocked state, and optionally, while the device hasbeen continuously on a user's wrist since the device was unlocked byproviding authentication credentials to the device, where the continuouspresence of the device on the user's wrist is determined by periodicallychecking that the device is in contact with the user's skin). Forexample, the device detects a fingerprint at a fingerprint sensor (e.g.,a fingerprint sensor integrated into a button) of the device. The devicedetermines whether the fingerprint is consistent with a registeredfingerprint. In accordance with a determination that the fingerprint isconsistent with the registered fingerprint, the secure element provides(or releases) payment information. In accordance with a determinationthat the fingerprint is not consistent with the registered fingerprint,the secure element forgoes providing (or releasing) payment information.

Attention is now directed towards embodiments of user interfaces (“UI”)and associated processes that are implemented on an electronic device,such as portable multifunction device 100, device 300, or device 500.

FIGS. 7A-7V illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.The user interfaces in these figures are used to illustrate theprocesses described below, including the processes in FIGS. 14A-14B andFIGS. 15A-15B.

FIGS. 7A-7D illustrate an exemplary scenario where a user (e.g., asshown in FIG. 7A) is able to successfully perform a secure operation(e.g., unlock computer system 700) (e.g., as shown in FIGS. 7B-7D) whena determination is made that a captured biometric feature (e.g., theface of a user) (e.g., not when only a portion of the biometric feature)matches a biometric profile.

FIG. 7A illustrates user 760 (e.g., “Jane”) holding computer system 700and, optionally (e.g., as indicated by indicator 786), wearing externalaccessory device 790. In the exemplary embodiments provided in FIGS.7A-7V, computer system 700 is a smartphone, and external accessorydevice 790 is a smartwatch. In some embodiments, computer system 700 canbe a different type of computer system, such as a tablet computer. Insome embodiments, external accessory device 790 can be a different typeof external accessory device, such as a smartphone or tablet computer.In some embodiments, computer system 700 and/or external accessorydevice 790 include one or more components of device 100, device 300,and/or device 500.

As illustrated in FIG. 7A, computer system 700 includes display 710.Computer system 700 also includes one or more inputs devices (e.g.,touch screen of display 710, hardware button 702, and a microphone), awireless communication radio, and one or more biometric sensors (e.g.,biometric sensor 704, touch screen of display 710). In some embodiments,biometric sensor 704 includes one or more biometric sensors that includea camera, such as a depth camera (e.g., an infrared camera), athermographic camera, or a combination thereof. In some embodiments,biometric sensor 704 includes a biometric sensor (e.g., facialrecognition sensor), such as those described in U.S. patent applicationSer. No. 14/341,860; U.S. Patent Pub. No. 2016/0025993; U.S. patentapplication Ser. No. 13/810,451; and U.S. Pat. No. 9,098,931, which arehereby incorporated by reference in their entireties for any purpose. Insome embodiments, biometric sensor 704 includes one or more fingerprintsensors (e.g., a fingerprint sensor integrated into an affordance). Insome embodiments, computer system 700 further includes a light-emittingdevice (e.g., light projector), such as an IR floodlight, a structuredlight projector, or a combination thereof. The light-emitting device is,optionally, used to illuminate the biometric feature (e.g., the face)during capture of biometric data of biometric features by biometricsensor 704. In some embodiments, computer system 700 includes aplurality of cameras separate from biometric sensor 704. In someembodiments, computer system 700 includes only one camera separate frombiometric sensor 704.

As illustrated in FIG. 7A, user 760 is holding computer system 700 in aposition where user 760 can see content displayed on display 710 andbiometric sensor 704 can detect the face of user 760 (e.g., which isshown by zone of detection indicator 784). In particular, the face ofuser 760 includes upper portion 760 a and bottom portion 760 b. Asillustrated in FIG. 7A, upper portion 760 a includes the eyes andeyebrows of user 760, and bottom portion 760 b includes the nose andmouth of user 760. In some embodiments, other portions of the face ofuser 760 can be delineated as being a different portion. In someembodiments, upper portion 760 a and/or bottom portion 760 b can includeless or more of the face of user 760. At FIG. 7A, biometric sensor 704can detect both the upper portion 760 a and bottom portion 760 b of theface of user 760. As illustrated in FIG. 7A, external accessory device790 is in an unlocked state, which is represented by unlock indicator794.

FIGS. 7B-7D illustrate one or more exemplary user interfaces that aredisplayed on display 710 of computer system 700. In particular, the oneor more exemplary user interfaces of FIGS. 7B-7D are described inrelation to an exemplary scenario where user 760 attempts to usebiometric authentication to unlock computer system 700 while user 760,external accessory device 790, and computer system 700 are oriented andin a state as depicted and described above in relation to FIG. 7A.

As illustrated in FIG. 7B, computer system 700 displays notification714, which indicates that a message from John Appleseed has beenreceived. User 760 wishes to view the restricted content of notification714 (e.g., the message from John Appleseed) but is unable to do so, ascomputer system 700 is currently in a locked state, as indicated by lockindicator 712 a. As illustrated in FIG. 7B, computer system 700 displaysa locked state user interface (UI) on display 710. The locked state UIincludes lock indicator 712 a, which provides an indication thatcomputer system 700 is in a locked state. Viewing the restricted contentof notification 714 requires successful authentication (e.g.,determining that information (or data) about a biometric featureobtained using biometric sensor 704 corresponds to (or matches) storedauthorized credentials or biometric features).

At FIG. 7B, computer system 700 detects upward swipe input 750 b on(e.g., at a location corresponding to) user interface object 716 anddetermines that a request to perform a secure operation (e.g., a requestto initiate biometric authentication) has been received because anunlock input/gesture, such as an upward swipe input 750 b, has beendetected. In some embodiments, computer system 700 determines that therequest to perform the secure operation has been received when one ormore other gestures and/or other inputs are detected, such as an inputon hardware button 702 as discussed below in relation to FIGS. 7P-7S. Insome embodiments, the one or more other gestures/inputs can include oneor more inputs/gesture (e.g., a tap input) that are detected whencomputer system 700 is in a low power state, one or more gestures/inputs(e.g., a tap input) on a notification (e.g., notification 714) oranother user interface object, one or more gestures/inputs on anotification or another user interface object that is displayed whilecomputer system 700 is in a locked state, and/or one or moregestures/inputs (e.g., presses) that are detected on one or morehardware input mechanisms, such as hardware button 702. In someembodiments, computer system 700 receives a request to perform a secureoperation when a determination is made that computer system 700 has beenlifted (or raised) to a particular position or by more than a particularamount, such as being raised from a substantially horizontal orientation(and/or vertical orientation) to an orientation of computer system 700shown in FIG. 7A.

At FIG. 7B, in response to detecting upward swipe input 750 b anddetermining that the request to perform a secure operation has beenreceived, computer system 700 initiates biometric authentication. Afterinitiating biometric authentication (e.g., prior to successfulauthentication), computer system 700 determines that a face is detectedby biometric sensor 704.

As illustrated in FIG. 7C, in response to determining that the requestto perform a secure operation has been received and determining that aface is detected by biometric sensor 704, computer system 700 displaysbiometric authentication status 720 (e.g., “Face Authentication”) ondisplay 710 to indicate that biometric authentication is beingperformed. In addition, computer system 700 continues to display lockindicator 712 a to indicate that computer system 700 remains in thelocked state. At FIGS. 7B-7C, computer system 700 determines that theface of user 760 (e.g., the biometric feature) that is being captured bybiometric sensor 704 has resulted in successful biometricauthentication. As indicated by indication 788 a of FIG. 7B (“FULL MATCHDETECTED”), computer system 700 has determined that a full match of thebiometric feature has been detected. That is, a determination has beenmade that the face of user 760 matches (e.g., within a certainconfidence interval) an enrolled (e.g., a saved, secured, verified,and/or a trusted) version of the biometric feature (e.g., a version ofthe biometric feature that data representation upper portion 760 a andbottom portion 760 b). In some embodiments, the enrolled version of thebiometric feature belongs to an authorized biometric profile (e.g.,enrolled biometric data, biometric data that enrolled before the currentbiometric authentication process was initiated and/or when computersystem 700 was in an unlocked state). In some embodiments, one or morebiometric features other than the face of user 760 (e.g., fingerprint,eyes) can be detected and used to determine whether the biometricauthentication was successful (e.g., using an authorized biometricprofile that includes enrolled data that is representative of therespective biometric feature). In some embodiments, indication 788 a isnot displayed by computer system 700.

At FIG. 7D, because the determination was made that the full match ofthe biometric feature has been detected (e.g., and/or that fullbiometric authentication was successful), computer system 700transitions from the locked state to an unlocked state. Because thedetermination was made that the full match of the biometric feature hasbeen detected, computer system 700 replaces lock indicator 712 a withunlock indicator 712 b on display 710, as illustrated in FIGS. 7C-7D.Unlock indicator 712 b indicates that computer system 700 is in anunlocked state. In some embodiments, after displaying the user interfaceof FIG. 7D, computer system 700 can display one or more user interfacesand/or perform one or more operations that would have been previouslyrestricted to the user if biometric authentication were not successful(e.g., as discussed below in relation to FIGS. 7I-7O).

FIGS. 7E-7H illustrate an exemplary scenario where a user is able tosuccessfully perform a secure operation when a determination is madethat partial biometric authentication is successful, but full biometricauthentication was not successful, and an alternative method forauthenticating is provided to the user because of the determination thatpartial biometric authentication was successful. As used herein, adetermination is made that partial biometric authentication issuccessful when only a portion (e.g., eyes, fingertip, bottom portion ofan eye) of a captured biometric feature matches an enrolled portion(e.g., eyes, fingertip, bottom portion of an eye) of a biometricfeature.

FIG. 7E illustrates user 760 holding computer system 700 and wearingexternal accessory device 790 in the same position that user 760 washolding computer system 700 in FIG. 7A. To contrast FIG. 7E with FIG.7A, user 760 is wearing mask 728 (e.g., a face covering) in FIG. 7Ewhile user 760 was not wearing a mask in FIG. 7A. Because user 760 iswearing a mask in FIG. 7E, biometric sensor 704 can only detect upperportion 760 a of the face of user 760 (e.g., which is shown by zone ofdetection indicator 784). Bottom portion 760 b of FIG. 7A is covered bymask 728 in FIG. 7E. While user 760 is illustrated wearing mask 728 thatcovers bottom portion 760 b, the embodiments described herein wouldoperate similarly even if another portion of user 760 was covered (e.g.,user 760 could wear an eye mask without wearing mask 728, such thatupper portion 760 a could be covered while bottom portion 760 b isuncovered). While user 760 is wearing a mask at FIG. 7E, a user wearinganother item (e.g., a scarf, a towel) can have a similar impact (asdescribed herein) as a user wearing a mask.

FIGS. 7F-7H illustrate one or more exemplary user interfaces that aredisplayed on display 710 of computer system 700. In particular, the oneor more exemplary user interfaces of FIG. 7F-7H are described inrelation to an exemplary scenario where user 760 attempts to usebiometric authentication (e.g., while wearing a mask) to unlock computersystem 700, and an alternative method for authenticating is provided tothe user because partial biometric authentication (and/or another methodof authenticating) was successful.

At FIG. 7F, computer system 700 displays notification 714, whichindicates that a message from John Appleseed has been received. User 760wishes to view the restricted content of notification 714 (e.g., themessage from John Appleseed) but is unable to do so, as computer system700 is currently in a locked state (e.g., as indicated by lock indicator712 a). As illustrated in FIG. 7F, computer system 700 displays a lockedstate user interface with lock indicator 712 a, which provides anindication that computer system 700 is in a locked state. At FIG. 7F,computer system 700 detects upward swipe input 750 f on user interfaceobject 716 and determines that a request to perform a secure operation(e.g., a request to initiate biometric authentication) has been receivedbecause an unlock input, such as an upward swipe input 750 f, has beendetected. At FIG. 7F, in response to detecting upward swipe input 750 fand determining that the request to perform a secure operation has beenreceived, computer system 700 initiates a biometric authenticationprocess.

At FIG. 7F, as a part of the biometric authentication process, computersystem 700 determines that the face of user 760 (e.g., biometric data)that is being captured by biometric sensor 704 does not match anenrolled biometric feature (e.g., full biometric authentication isunsuccessful). Here, the face of user 760 does match the enrolledbiometric feature because only upper portion 760 a of the face of user760 can accurately captured. As illustrated in FIG. 7F, portions (e.g.,bottom portion 760 b of FIG. 7E) are obstructed by mask 728, so computersystem 700 is not able to accurately capture these obstructed portions.In some embodiments, computer system 700 determines that full biometricauthentication (e.g., the captured feature matching the enrolledbiometric feature) is unsuccessful and/or the face of user 760 (e.g.,biometric data) that is being captured by biometric sensor 704 does notmatch the enrolled biometric feature because a determination has beenmade that a mask (e.g., mask 728) has been detected on the face of user760. After determining that the face of user 760 that is being capturedby biometric sensor 704 does not match an enrolled biometric feature,computer system 700 determines that partial biometric authentication issuccessful (e.g., as indicated by indication 788 b, “PARTIAL MATCHDETECTED”). In some embodiments, indication 788 b is not displayed bycomputer system 700. At FIG. 7F, the determination is made that partialbiometric authentication is successful because the captured portion(e.g., upper portion 760 a) of the face of user 760 matches (e.g.,within a threshold confidence interval) an enrolled portion (e.g., upperportion) of the biometric feature that belongs to a biometric profilecorresponding to user 760.

As illustrated in FIG. 7G, because computer system 700 determined thatthe face of user 760 (e.g., biometric data) that is being captured bybiometric sensor 704 does not match an enrolled biometric feature,computer system 700 remains in the locked state (e.g., is nottransitioned to the unlocked state). As illustrated in FIG. 7G, computersystem 700 continues to display lock indicator 712 a because of thisdetermination. However, as illustrated in FIG. 7G, computer system 700displays prompt 734 because a determination was made that a partialmatch of the enrolled biometric feature was detected (e.g., thedetermination was made that biometric authentication is successful).That is, a portion (e.g., upper portion 760 a) of the captured biometricfeature matches an enrolled portion of the biometric feature. Prompt 734includes the phrase, “TAP WATCH TO UNLOCK,” and indicates an alternativeauthentication method that can be used to perform the secure operation(e.g., unlock computer system 700). As illustrated in FIG. 7G, becausethe determination was made that partial match was detected, externalaccessory device 790 is updated to display prompt 796, which indicatesthat the alternative authentication method can be used to perform thesecure operation (e.g., including the phrase “TAP TO UNLOCK PHONE”). Inaddition, external accessory device 790 displays prompt 796 and/orcomputer system 700 displays prompt 734 because a determination is madethat external accessory device 790 is in an unlocked state (e.g., asindicated by indicator 794 of FIG. 7E, as discussed above in relation toFIG. 7A). In some embodiments, one or more of prompt 734 and prompt 796would not be displayed and the alternative authentication method cannotbe used to perform the secure operation when a determination is madethat is made that external accessory device 790 is in a locked state. Insome embodiments, when external accessory device 790 is in a lockedstate, a determination is made that external accessory device 790 cannotbe used to unlocked computer system 700 (e.g., because no authenticationhas been provided for external accessory device 790 and/or adetermination is made that external accessory device 790 is less securethan when external accessory device 790 is authenticated).

As illustrated in FIG. 7G, prompt 734 and prompt 796 indicate the samealternative authentication method that can be used to perform the secureoperation, where the alternative authentication method is completed by auser tapping on external accessory device 790 to unlock computer system700. Notably, in FIG. 7G, prompt 734 and prompt 796 are displayedbecause the determination was made that a partial match of the enrolledbiometric feature was detected, and computer system 700 remains in thelocked state (e.g., among the other reasons discussed above). In otherwords, computer system 700 provides an alternative authentication methodbecause a determination is made that a partial match of the enrolledbiometric feature was detected (and because a determination is made thatfull match of the enrolled biometric feature was not detected). In someembodiments, computer system 700 and/or external accessory device 790does not display a prompt and computer system 700 remains in the lockedstate because a determination is made that a partial match of theenrolled biometric feature was not detected (and because a determinationis made that full match of the enrolled biometric feature was notdetected), as described below in relation to FIGS. 7T-7V. In someembodiments, computer system 700 and/or external accessory device 790does not display a prompt and computer system 700 remains in the lockedstate when a determination is made that the gaze of user 760 is notdirected toward computer system 700 and/or biometric sensor 704. In someembodiments, computer system 700 and/or external accessory device 790does not display a prompt until a determination is made that the gaze ofuser 760 is directed toward computer system 700 and/or biometric sensor704. In some embodiments, computer system 700 and/or external accessorydevice 790 does not display a prompt because a determination is madethat external accessory device 790 is not within a predeterminationdistance (e.g., 1-3 meters) from computer system 700 (e.g., during thebiometric authentication process). In some embodiments, computer system700 and/or external accessory device 790 does not display a promptbecause a determination is made that external accessory device 790 isnot unlocked (e.g., during the biometric authentication process). AtFIG. 7G, tap input 750 g is detected on the display of externalaccessory device 790.

As illustrated in FIG. 7H, in response to the detection of tap input 750g, computer system 700 is transitioned from a locked state to anunlocked state (e.g., as indicated by unlock indicator 712 b of FIG. 7Hreplacing lock indicator 712 a of FIG. 7G). Thus, as described above inrelation to FIGS. 7E-7H, computer system 700 performs the secureoperation (e.g., unlocks) using an alternative authentication methodwhen full biometric authentication is unsuccessful and partial biometricauthentication is successful (e.g., among the other reasons discussedabove, such as external accessory device 790 being unlocked and within apredetermined distance from computer system 700). In some embodiments,computer system 700 is maintained in the locked state when thealternative authentication method (e.g., indicated by prompt 734 and/orprompt 796) is not provided and/or is not successful (e.g., a swipeinput is received when the prompt instructed the user to provide a tapinput). Although the alternative authentication method described inFIGS. 7E-7H is performed when a tap input is received on externalaccessory device 790, computer system 700 and/or external accessorydevice 790 can display a prompt concerning one or more other alternativeauthentication methods and/or one or more other alternativeauthentication methods can be performed to cause computer system 700 toperform the secure operation (e.g., unlock). In some embodiments, theone or more alternative authentication methods can include computersystem 700 and/or external accessory device 790 detecting other types ofinputs and/or gestures than tap input 750 g, such as a press-and-holdgesture/input, a multi-tap gesture/input, a swipe gesture/input, a pinchgesture/input, or any combination thereof. In some embodiments, the oneor more alternative authentication methods can include computer system700 and/or external accessory device 790 detecting a series ofpredefined inputs/gestures, where the inputs/gestures have to bedetected in a certain order, on a certain location of a device/system,and/or on a particular device/system. In some embodiments, the one ormore alternative authentication methods can include one or moretechniques are described below in relation to FIGS. 8A-8D, FIGS. 9A-9D,FIGS. 10A-10D, FIGS. 11A-11D, FIGS. 12A-12D, FIGS. 13A-13F, and/or anycombination thereof.

FIGS. 7I-7O illustrate exemplary embodiments that are provided todescribe how computer system 700 can provide different levels of accessprivileges (e.g., read, write, update, and delete privileges) based onwhich form of authentication (e.g., full biometric authentication orpartial biometric authentication combined with alternativeauthentication) was determined to be successful. In some embodiments,computer system 700 can provide different levels of access privilegesfor different applications based on which form of authentication wasdetermined to be successful. In some embodiments, computer system 700provides the user with more access privileges when computer system 700is unlocked after a determination has been made that full biometricauthentication is successful than the access privileges provided whencomputer system 700 is unlocked after the alternative authenticationmethod is provided and/or is determined to be successful (and, inaddition, after full biometric authentication is determined to beunsuccessful, partial biometric authentication is determined to besuccessful). In some embodiments, computer system 700 provides the userwith more access privileges when computer system 700 is unlocked after adetermination has been made that full biometric authentication issuccessful because full biometric authentication is considered a morereliable (e.g., more secure, trusted) form of authentication than thealternative authentication method (e.g., and partial biometricauthentication).

At FIG. 7I, computer system 700 is displaying a home screen userinterface that includes application icons 740. Application icons 740include watch application icon 740 a, browser application icon 740 b,passwords application icon 740 c, financial application icon 740 d,phone application icon 740 e, messaging application icon 740 f, e-mailapplication icon 740 g, and camera application icon 740 h. In someembodiments, computer system 700 allows a user to interact with and/orperform functions related to each application (e.g., that corresponds toapplication icons 740) installed on computer system 700 and/or performone or more system functions based on which authentication method wasused to unlock computer system 700.

FIGS. 7J-7K illustrate alternative embodiments that are provided todescribe the different access privileges for an application thatcomputer system 700 can provide to a user who has been authenticated viafull biometric authentication (e.g., as described above in relation toFIGS. 7A-7D) and a user who has been authenticated via the alternativeauthentication method (e.g., as described above in relation to FIGS.7E-7G). In particular, FIG. 7J illustrates an embodiment where the userhas been authenticated via full biometric authentication and FIG. 7Killustrates an embodiment where the user has been authenticated via thealternative authentication method (e.g., as described above in relationto FIGS. 7E-7G). At FIG. 7I, computer system 700 detects tap input 750 i1 on financial application icon 740 d and, as described below, displaysthe user interface of FIG. 7J or the user interface of FIG. 7K based onthe authentication method that was used to unlock computer system 700.

As illustrated in FIG. 7J, in response to detecting tap input 750 i 1,computer system 700 opens a financial application that corresponds tofinancial application icon 740 d and displays financial application userinterface 742. Financial application user interface 742 contains accountinformation concerning financial accounts for user 760 (“JANE'S CHECKINGACCOUNT”). This information includes sensitive information, such asbalances and transaction information related to the financial accountsfor user 760. At FIG. 7J, computer system 700 displays financialapplication user interface 742 that includes account information becausethe user has been authenticated via full biometric authentication tounlock computer system 700 (e.g., sometime after computer system 700 istransitioned to the unlocked state, as described above in relation toFIGS. 7A-7D). Thus, at FIG. 7J, computer system 700 has provided theuser will full access privileges to create, view, update, and deletesensitive information.

Alternatively, as illustrated in FIG. 7K, computer system 700 displaysprompt 744 in response to detecting tap input 750 i 1. Prompt 744indicates that the user does not have permission to access the financialapplication that corresponds to financial application icon 740 d. AtFIG. 7K, computer system 700 displays prompt 744 instead of opening thefinancial application because the alternative authentication method wasused to unlock computer system 700 (e.g., sometime after computer system700 is transitioned to the unlocked state, as described above inrelation to FIGS. 7E-7G) and the user does not have access privileges toopen the financial application. Thus, as compared to FIG. 7J (e.g., fullbiometric authentication used to unlock computer system 700), computersystem 700 provides a user with reduced access privileges at FIG. 7Kbecause the alternative authentication method was used to unlockcomputer system 700. In some embodiments, instead of displaying prompt744, computer system 700 opens the financial application but does notdisplay some or all of the account information for Jane's accounts(e.g., shown in FIG. 7J). Thus, in some embodiments, computer system 700allows a user to open the financial application without being able toobtain sensitive information related to Jane's account. In someembodiments, at FIG. 7K, computer system 700 displays a request for theuser to provide full biometric authentication in response to detectingtap input 750 i 1 of FIG. 7I.

Computer system 700 is not limited to providing different accessprivileges for only financial applications based on whether computersystem 700 was unlocked via full biometric authentication or thealternative authentication method. It is understood that computer system700 can provide different access privileges for any application that auser can interact with via computer system 700. For example, in responseto detecting tap input 750 i 2 on passwords application icon 740 c,computer system 700 opens a passwords application (e.g., an applicationfor storing passwords) when full biometric authentication has been usedto unlock computer system 700 but does not open the passwordsapplication when the alternative authentication method has been used tounlock computer system 700. In some embodiments, computer system 700allows a user to update and/or delete one or more passwords in thepasswords application and/or perform one or more operations when fullbiometric authentication has been used to unlock computer system 700 butdoes not allow a user to update and/or delete one or more passwords inthe passwords application and/or perform one or more operations when thealternative authentication method has been used to unlock computersystem 700.

Turning back to FIG. 7I, computer system 700 detects press-and-holdinput 750 i 4 on display 710. As illustrated in FIG. 7L, in response todetecting press-and-hold input 750 i 4, computer system 700 displaysdelete affordance 740 cl near passwords application icon 740 c. FIGS.7M-7N illustrate alternative embodiments that are provided to describethe different access-privileges for an operation that computer system700 can provide to a user who has been authenticated via full biometricauthentication (e.g., as described above in relation to FIGS. 7A-7D) anda user who has been authenticated via the alternative authenticationmethod (e.g., as described above in relation to FIGS. 7E-7G). Inparticular, FIG. 7M illustrates an embodiment where the user has beenauthenticated via full biometric authentication and FIG. 7N illustratesan embodiment where the user has been authenticated via the alternativeauthentication method (e.g., as described above in relation to FIGS.7E-7G). At FIG. 7L, computer system 700 detects tap input 750 l ondelete affordance 740 c 1 and, as described below, displays the userinterface of FIG. 7M or the user interface of FIG. 7N based on theauthentication method that was used to unlock computer system 700.

As illustrated in FIG. 7M, in response to detecting tap input 750 l,computer system 700 displays menu 746 that includes delete applicationoption 746 a, remove-from-home-screen option 746 b, and cancel option746 c. At FIG. 7M, computer system 700 displays menu 746 because user760 has been authenticated via full biometric authentication to unlockcomputer system 700 (e.g., sometime after computer system 700 istransitioned to the unlocked state, as described above in relation toFIGS. 7A-7D). In some embodiments, in response to receiving tap input750 m on delete application option 746 a, computer system 700 uninstallsthe passwords application that corresponds to passwords application icon740 c. In some embodiments, computer system 700 uninstalls the passwordsapplication because user 760 has been authenticated via full biometricauthentication to unlock computer system 700.

Alternatively, as illustrated in FIG. 7N, computer system 700 displaysprompt 748 in response to detecting tap input 750 l. Prompt 748indicates that the user does not have permission to perform the deleteoperation and/or display menu 746 of FIG. 7M. At FIG. 7N, computersystem 700 displays prompt 748 instead of displaying menu 746 becausethe alternative authentication method was used to unlock computer system700 (and the user does not have the access-privileges to perform one ormore of the operations provided by menu 746). Thus, as compared to FIG.7M (e.g., full biometric authentication used to unlock computer system700), computer system 700 provides a user with reduced access-privilegesat FIG. 7N because the alternative authentication method was used tounlock computer system 700. In some embodiments, at FIG. 7N, computersystem 700 displays a modified version of menu 746 with only the optionsthat the user are allowed to perform (e.g., the operation associatedwith cancel option 746 c) when the alternative authentication method wasused to unlock computer system 700. In some embodiments, at FIG. 7N,computer system 700 displays menu 746 but, in response to detecting aninput on one of the options on menu 746, does not perform an operationassociated with the option on menu 746 (e.g., does not delete thepasswords application when an input on delete application option 746 ais deleted). In some embodiments, at FIG. 7N, computer system 700displays menu 746 but, in response to detecting an input on one of theoptions on menu 746, displays prompt 748 to indicate that the user doesnot have permission to perform the particular operation. In someembodiments, at FIG. 7N, in response to detecting an input on one of theoptions on menu 746, computer system 700 initiates a process forcompleting full biometric authentication to allow the user to performthe operation that is associated with the option on menu 746.

FIG. 7O illustrates an embodiment where computer system 700 provides thesame access-privileges for an application, irrespective of theauthentication method that was used to unlock computer system 700.Looking back at FIG. 7I, computer system 700 detects tap input 750 i 3on browser application icon 740 b. As illustrated in FIG. 7O, inresponse to detecting tap input 750 i 3, computer system 700 opens abrowser application that corresponds to browser application icon 740 band displays a browser user interface 752. At FIG. 7O, computer system700 opens the browser application and displays browser user interface752 in response to detecting tap input 750 i 3, irrespective of theauthentication method that was used to unlock computer system 700. Thus,for some applications, computer system 700 can provide the sameaccess-privileges regardless of which authentication method was used tounlock computer system 700 (e.g., as opposed to detecting tap input 750i 1 and 750 i 2, as discussed above in relation to FIGS. 7J-7K). In someembodiments, computer system 700 provides limited access-privileges,such as read-only privileges (e.g., cannot update/delete), basic featureonly privileges (e.g., can browse the web, listen to music), no secureinformation privileges (e.g., no access to financial application and/orpayment processing application) when (e.g., or after) the alternativeauthentication method is used to unlock computer system 700. In someembodiments, the level/type (e.g., read-only, basic feature only) of thelimited access-privileges is provided by computer system 700 based onwhether a user could be fully authenticated using the alternativeauthentication method (e.g., voice input being received as thealternative authenticated method that is detected with background noisecan cause a reduced set of privileges than voice input being received asthe alternative authentication method without background noise, asdescribed below in relation to FIGS. 8A-8D). Thus, in some embodiments,the level/type of the limited access-privileges is provided by computersystem 700 based on whether user actions when completing the alternativeauthentication method satisfy various confidence thresholds (e.g., useraction to complete an alternative authentication method satisfying 90%confidence threshold has more reduced access-privileges than user actionto complete the alternative authentication method satisfying the 95%confidence threshold).

FIGS. 7P-7S illustrates one or more exemplary user interfaces that aredisplayed on display 710 of computer system 700. In particular, the oneor more exemplary user interfaces of FIGS. 7P-7S are described inrelation to an exemplary scenario where user 760 attempts to usebiometric authentication (e.g., while wearing a mask) to download anapplication. One reason why FIGS. 7P-7S are provided to show that secureoperation other than unlocking computer system 700 can be performedusing the same techniques as described above in relation to FIGS. 7E-7H.

At FIG. 7P, user 760 wishes to download an application (e.g., “AccountApp”) while wearing mask 728 but is unable to do so withoutauthenticating. As illustrated in FIG. 7Q, computer system 700 displaysnotification 764 to confirm downloading of the application by pressingthe side button (e.g., “confirm with side button”). In some embodiments,computer system 700 displays notification 764 in response to detectingan input on get option 762 a.

At FIG. 7Q, computer system 700 detects press input 750 q on hardwarebutton 702. In response to detecting press input 750 q, computer system700 determines that a request to perform a secure operation (e.g., arequest to initiate biometric authentication) has been received becausea unlock input, such as press input 750 q, has been detected. At FIG.7Q, because press input 750 q was detected and it was determined thatthe request to perform a secure operation has been received, computersystem 700 initiates biometric authentication. After initiatingbiometric authentication, computer system 700 determines that only upperportion 760 a of the face of user 760 is available to be captured bybiometric sensor 704. At FIG. 7Q, because the determination was madethat that only upper portion 760 a of the face of user 760 is availableto be captured by biometric sensor 704, computer system 700 determinesthat biometric authentication using only upper portion 760 a issuccessful because only upper portion 760 a that is captured in FIG. 7Pmatches (or significantly matches) the enrolled portion of biometricfeature that corresponds to user 760.

As illustrated in FIG. 7R, successful because only upper portion 760 athat is captured in FIG. 7P matches (or significantly matches) theenrolled portion of biometric feature that corresponds to user 760(e.g., partial biometric authentication is successful), computer system700 displays prompt 766 and external accessory device 790 displaysprompt 796 (e.g., using similar techniques as described above inrelation to prompt 734 of FIG. 7G). Prompt 766 and prompt 798 indicatethat an alternative authentication method can be used to perform thesecure transaction (e.g., “TAP TO AUTHORIZE”). At FIG. 7R, tap input 750r is detected on the display of external accessory device 790.

At FIG. 7S, in response to the detection of tap input 750 r, computersystem 700 downloads the application (e.g., “Account App”) and replacesget option 762 a of FIG. 7R with open option 762 b of FIG. 7S. In someembodiments, computer system 700 does not authorize downloading anapplication when only a portion of the biometric feature is availableand the alternative authentication method has been completed. In someembodiments, individual settings (or multiple settings for each) aredisplayed to individually control whether or not computer system 700will authenticate using only a portion of the biometric feature and thealternative authentication method for an individual secure operation.

FIGS. 7T-7V illustrate one or more exemplary user interfaces that aredisplayed on display 710 of computer system 700. In particular, the oneor more exemplary user interfaces of FIG. 7T-7V are described inrelation to an exemplary scenario where user 770 attempts to usebiometric authentication (e.g., while wearing a mask) to unlock computersystem 700 and an alternative authentication method for authenticatingis not provided to the user because full biometric authentication andpartial biometric authentication is not successful.

At FIG. 7U, computer system 700 displays notification 714, whichindicates that a message from John Appleseed has been received. User 770(e.g., John) wishes to view the restricted content of notification 714(e.g., the message from John Appleseed) but is unable to do so, ascomputer system 700 is currently in a locked state (e.g., as indicatedby lock indicator 712 a). As illustrated in FIG. 7U, computer system 700displays a locked state user interface with lock indicator 712 a, whichprovides an indication that computer system 700 is in a locked state. AtFIG. 7U, computer system 700 detects upward swipe input 750 u on userinterface object 716 and determines that a request to perform a secureoperation (e.g., a request to initiate biometric authentication) hasbeen received because an unlock input, such as an upward swipe input 750u, has been detected. At FIG. 7U, in response to detecting upward swipeinput 750 u and determining that the request to perform a secureoperation has been received, computer system 700 initiates a biometricauthentication process.

At FIG. 7U, as a part of the biometric authentication process, computersystem 700 determines that the face of user 770 (e.g., biometric data)that is being captured by biometric sensor 704 does not match anenrolled biometric feature (e.g., full biometric authentication isunsuccessful) and also determines that the portion 770 a does not matchthe enrolled portion of the biometric feature (e.g., partial biometricauthentication is unsuccessful) (e.g., as indicated by indication 788c). Here, biometric data captured via biometric sensor 704 does notmatch the enrolled biometric feature and the enrolled portion of thebiometric feature because computer system 700 does not have an enrolledbiometric profile stored for user 770 like it has for user 760.

As illustrated in FIG. 7V, because computer system 700 determined thatthe biometric data that is being captured by biometric sensor 704 doesnot match the enrolled biometric feature and the enrolled portion of thebiometric feature, computer system 700 remains in the locked state(e.g., is not transitioned to the unlocked state). In addition, computersystem 700 and/or external accessory device 790 does not display aprompt indicating that an alternative authentication method can beperformed to transition computer system 700 to a locked state becausecomputer system 700 determined that the biometric data that is beingcaptured by biometric sensor 704 does not match the enrolled biometricfeature and the enrolled portion of the biometric feature. Notably,although computer system 700 detects a portion of the face of user 770,computer system 700 does not perform the secure operation and does notprovide an alternative way to the user to unlock computer system 700because user 770 is not enrolled and/or the captured biometric data doesnot sufficiently match a portion of the biometric feature. Moreover,computer system 700 is not configured to perform the secure operationwhen an alternative authentication method (e.g., tap input on externalaccessory device 790) is received without a prompt to perform thealternative authentication method is displayed. Thus, in someembodiments, computer system 700 remains in the locked state in responseto detecting a tap input on the display of external accessory device 790(and/or in response to detecting an alternative authentication method).

While FIGS. 7A-7V describe computer system 700 using variousauthentication techniques to determine whether to unlock computer system700 and/or confirming an application for downloading (or, in general,downloading a file), the discussion of FIGS. 7A-7V can also be adaptedto work with other secure operations that require authentication, suchas authorizing the auto-filling of a password/passcode, performance of atransaction (e.g., using one or more components as discussed in FIG. 6), changing system configurations, etc.

FIGS. 8A-8D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.In particular, FIGS. 8A-8D are provided to show an alternativeauthentication method that can be used in conjunction with and/or inlieu of the alternative authentication methods described above inrelation to FIGS. 7E-7H and below in relation to FIGS. 9A-9D, FIGS.10A-10D, FIGS. 11A-11D, FIGS. 12A-12D, and FIGS. 13A-13F. Thealternative authentication method described below in relation to FIGS.8A-8D can be swapped out and/or included with the alternativeauthentication method described above in relation to FIGS. 7A-7V (e.g.,tap on watch to unlock). The alternative authentication method describedin relation to FIGS. 8A-8D involves the detection of voice input (e.g.,by computer system 700 and/or an external accessory device, suchexternal accessory device 790) that is used to authenticate the user andcause computer system 700 to be transitioned from the locked state to anunlocked state.

As illustrated in FIG. 8A, user 760 is holding computer system 700 whilewearing mask 728 and external accessory device 790. At FIG. 8B, computersystem 700 displays notification 714, which indicates that a messagefrom John Appleseed has been received. At FIG. 8B, computer system 700detects upward swipe input 850 b. At FIG. 8B, in response to detectingupward swipe input 850 b, computer system 700 initiates a biometricauthentication process. At FIG. 8B, computer system 700 determines thatfull biometric authentication is unsuccessful and partial biometricauthentication is successful (e.g., as indicated by indication 788 b,“PARTIAL MATCH DETECTED”) based on upper portion 760 a being captured bybiometric sensor 704 (e.g., for similar reasons as described above inrelation to FIG. 7F).

As illustrated in FIG. 8C, because the full biometric authentication isunsuccessful, computer system 700 remains in the locked state (e.g., asindicated by lock indicator 712 a, for similar reasons as describedabove in relation to FIG. 7G). As illustrated in FIG. 8C, computersystem 700 displays prompt 844 because computer system 700 determinedthat full biometric authentication is unsuccessful and partial biometricauthentication is successful (e.g., for similar reasons as describedabove in relation to displaying prompt 734 in FIG. 7G). Prompt 844indicates that an alternative authentication method can be used toperform the secure operation. In particular, prompt 844 indicates that auser will need to provide voice input that includes “UNLOCK MY PHONE” inorder to unlock computer system 700. In some embodiments, prompt 844 canbe updated to include other phrases to indicate that a user will need toprovide additional voice input to unlock computer system 700. In someembodiments, prompt 844 is updated to include a new phrase after voiceinput is detected that includes the previously displayed phrase and/orvoice input that includes the previously displayed phrase is verified.In some embodiments, computer system 700 automatically generates thephrase. In some embodiments, computer system 700 generates the phrasefrom a group or predefined set of phrases that are associated with avoice profile that corresponds to one or more users (e.g., user 760 andnot user 770) of computer system 700. In some embodiments, a prompt thatis similar to prompt 844 is displayed on an external accessory devicebecause computer system 700 determined that full biometricauthentication is unsuccessful and partial biometric authentication issuccessful.

At FIG. 8D, computer system 700 detects voice input 850 d that includesthe phrase “UNLOCK MY PHONE” via one or more microphones of computersystem 700. In some embodiments, an external accessory device (e.g.,external accessory device 790) detects voice input 850 d). In someembodiments, upon a determination that the voice input matches (e.g.,sufficiently matches within a certain level of confidence (e.g.,80-100%) an enrolled voice profile, computer system 700 is transitionedfrom the locked state to an unlocked state (e.g., similar to thetransition described above in relation to FIG. 7H). In some embodiments,upon a determination that the voice input does not sufficiently match anenrolled voice profile and/or the voice input does not include therequired phrase (e.g., phrase indicated by prompt 844), computer system700 remains in the locked state. In some embodiments, upon adetermination that the voice input does not sufficiently match anenrolled voice profile (or any other alternative authentication methodfails), computer system 700 provides the opportunity for the user toprovide the voice input again (or perform the alternative authenticationmethod again). In some embodiments, computer system 700 requires adetermination to be made that full biometric authentication or anotherform of authentication (e.g., password authentication) is successfulbefore computer system 700 can be unlocked once a predetermined number(e.g., 1-5) of attempts have been made to provide the required voiceinput (or to authenticate via the alternative authentication methodsuccessfully). In some embodiments, upon a determination that the voiceinput does not sufficiently match an enrolled voice profile (or anyother alternative authentication method fails), computer system 700 istransitioned to the unlocked state, and computer system 700 provides alimited set of access-privileges (e.g., as described above in relationto FIGS. 7I-7O).

FIGS. 9A-9D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.In particular, FIGS. 9A-9D are provided to show an alternativeauthentication method that can be used in conjunction with and/or inlieu of the alternative authentication methods described herein inrelation to FIGS. 7E-7H, FIGS. 8A-8D, FIGS. 10A-10D, FIGS. 11A-11D,FIGS. 12A-12D, and FIGS. 13A-13F. The alternative authentication methoddescribed below in relation to FIGS. 9A-9D can be swapped out and/orincluded with the alternative authentication method described above inrelation to FIGS. 7A-7V (e.g., tap on watch to unlock). The alternativeauthentication method described in relation to FIGS. 9A-9D involves thedetection of a press input on a hardware component of external accessorydevice 790.

As illustrated in FIG. 9A, user 760 is holding computer system 700 whilewearing mask 728 and external accessory device 790. At FIG. 9B, computersystem 700 displays notification 714, which indicates that a messagefrom John Appleseed has been received. At FIG. 9B, computer system 700detects upward swipe input 950 b. At FIG. 9B, in response to detectingupward swipe input 950 b, computer system 700 initiates a biometricauthentication process and determines that full biometric authenticationis unsuccessful and partial biometric authentication is successful(e.g., as indicated by indication 788 b, “PARTIAL MATCH DETECTED”) basedon upper portion 760 a being captured by biometric sensor 704 (e.g., forsimilar reasons as described above in relation to FIG. 7F).

As illustrated in FIG. 9C, because the full biometric authentication isunsuccessful, computer system 700 remains in the locked state (e.g., asindicated by lock indicator 712 a, for similar reasons as describedabove in relation to FIG. 7G). As illustrated in FIG. 9C, computersystem 700 displays prompt 944 and external accessory device 790displays prompt 994 because computer system 700 determined that fullbiometric authentication is unsuccessful and partial biometricauthentication is successful (e.g., for similar reasons as describedabove in relation to displaying prompt 734 in FIG. 7G). Prompt 944 andprompt 994 indicate that an alternative authentication method can beused to perform the secure operation. In particular, prompt 944 andprompt 994 indicate the crown on external accessory device 790 will needto be pressed before computer system 700 can be unlocked. At FIG. 9D,press input 950 d is detected on hardware button 792 (e.g., crown ofexternal accessory device 790). In some embodiments, in response to thedetection of press input 950 d, computer system 700 is transitioned fromthe locked state to an unlocked state (e.g., similar to the transitiondescribed above in relation to FIG. 7H). In some embodiments, inresponse to no detection of a press input on hardware button 792,computer system 700 remains in the locked state. While FIGS. 9A-9Ddescribe an alternative authentication method that involves pressinghardware button 792, one or more other alternative authenticationmethods can require interactions with hardware components of computersystem 700 and/or external accessory device 790, such as rotating ahardware component (e.g., hardware button 792), pressing a componentelement for a predetermined period of time, providing multiple inputsand/or different types of inputs to one or more different hardwarecomponents.

FIGS. 10A-10D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.In particular, FIGS. 10A-10D are provided to show an alternativeauthentication method that can be used in conjunction with and/or inlieu of the alternative authentication methods described herein inrelation to FIGS. 7E-7H, FIGS. 8A-8D, FIGS. 9A-9D, FIGS. 11A-11D, FIGS.12A-12D, and FIGS. 13A-13F. The alternative authentication methoddescribed below in relation to FIGS. 10A-10D can be swapped out and/orincluded with the alternative authentication method described above inrelation to FIGS. 7A-7V (e.g., tap on watch to unlock). The alternativeauthentication method described in relation to FIGS. 10A-10D involvesthe rotation of external accessory device 790.

As illustrated in FIG. 10A, user 760 is holding computer system 700while wearing mask 728 and external accessory device 790. At FIG. 10B,computer system 700 displays notification 714, which indicates that amessage from John Appleseed has been received. At FIG. 10B, computersystem 700 detects upward swipe input 1050 b. At FIG. 10B in response todetecting upward swipe input 1050 b, computer system 700 initiates abiometric authentication process and determines that full biometricauthentication is unsuccessful and partial biometric authentication issuccessful (e.g., as indicated by indication 788 b, “PARTIAL MATCHDETECTED”) based on upper portion 760 a being captured by biometricsensor 704 (e.g., for similar reasons as described above in relation toFIG. 7F).

As illustrated in FIG. 10C, because the full biometric authentication isunsuccessful, computer system 700 remains in the locked state (e.g., asindicated by lock indicator 712 a, for similar reasons as describedabove in relation to FIG. 7G). As illustrated in FIG. 10C, computersystem 700 displays prompt 1044 and external accessory device 790displays prompt 1094 because computer system 700 determined that fullbiometric authentication is unsuccessful and partial biometricauthentication is successful (e.g., for similar reasons as describedabove in relation to displaying prompt 734 in FIG. 7G). Prompt 1044 andprompt 1094 indicate that an alternative authentication method can beused to perform the secure operation. In particular, prompt 1044 andprompt 1094 indicate external accessory device 790 will need to berotated before computer system 700 can be unlocked. At FIG. 10D,rotation input 1050 d is detected and/or external accessory device 790is determined to have been rotated (e.g., based on data gathered fromone or more accelerometers and/or gyroscopes include in externalaccessory device 790). In some embodiments, in response to the detectionof rotation input 1050 d, computer system 700 is transitioned from thelocked state to an unlocked state (e.g., similar to the transitiondescribed above in relation to FIG. 7H). In some embodiments, inresponse to no detection of a rotation input, computer system 700remains in the locked state. While FIGS. 10A-10D describe an alternativeauthentication method that involves rotating external accessory device790, one or more other alternative authentication methods can requiremoving computer system 700 and/or external accessory device 790 indifferent ways, such as lifting, dropping, and/or shaking computersystem 700 and/or external accessory device 790. In some embodiments,the one or more alternative authentication methods can require moving(e.g., rotating) computer system 700 and/or external accessory device790 in a certain pattern (e.g., rotate right followed by rotate left) ofa set of predefined motions and prompt 1044 and prompt 1094 can beupdated after each motion in the set is completed (e.g., to inform auser of the new motion that is required to unlock computer system 700).

FIGS. 11A-11D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.In particular, FIGS. 11A-11D are provided to show an alternativeauthentication method that can be used in conjunction with and/or inlieu of the alternative authentication methods described herein inrelation to FIGS. 7E-7H, FIGS. 8A-8D, FIGS. 9A-9D, FIGS. 10A-10D, FIGS.12A-12D, and FIGS. 13A-13F. The alternative authentication methoddescribed below in relation to FIGS. 11A-11D can be swapped out and/orincluded with the alternative authentication method described above inrelation to FIGS. 7A-7V (e.g., tap on watch to unlock). The alternativeauthentication method described in relation to FIGS. 11A-11D involvestouching (e.g., tapping) computer system 700 with external accessorydevice 790, or vice versa.

As illustrated in FIG. 11A, user 760 is holding computer system 700while wearing mask 728 and external accessory device 790. At FIG. 11B,computer system 700 displays notification 714, which indicates that amessage from John Appleseed has been received. At FIG. 11B, computersystem 700 detects upward swipe input 1150 b. At FIG. 11B, in responseto detecting upward swipe input 1150 b, computer system 700 initiates abiometric authentication process and determines that full biometricauthentication is unsuccessful and partial biometric authentication issuccessful (e.g., as indicated by indication 788 b, “PARTIAL MATCHDETECTED”) based on upper portion 760 a being captured by biometricsensor 704 (e.g., for similar reasons as described above in relation toFIG. 7F).

As illustrated in FIG. 11C, because the full biometric authentication isunsuccessful, computer system 700 remains in the locked state (e.g., asindicated by lock indicator 712 a, for similar reasons as describedabove in relation to FIG. 7G). As illustrated in FIG. 11C, computersystem 700 displays prompt 1144 and external accessory device 790displays prompt 1194 because computer system 700 determined that fullbiometric authentication is unsuccessful and partial biometricauthentication is successful (e.g., for similar reasons as describedabove in relation to displaying prompt 734 in FIG. 7G). Prompt 1144 andprompt 1194 indicate that an alternative authentication method can beused to perform the secure operation. In particular, prompt 1144 andprompt 1194 indicates that computer system 700 will need to be tappedwith external accessory device 790 before computer system 700 can beunlocked. At FIG. 11D, computer system 700 is forcibly tapped withexternal accessory device 790 (e.g., or vice-versa) by user 760. In someembodiments, a determination is made that computer system 700 has beentapped by external accessory device 790 based on data gathered from oneor more accelerometers and/or gyroscopes include in computer system 700and/or external accessory device 790. In some embodiments, because thedetermination is made that computer system 700 has been forcibly tappedwith external accessory device 790 (e.g., or vice-versa), computersystem 700 is transitioned from the locked state to an unlocked state(e.g., similar to the transition described above in relation to FIG.7H). In some embodiments, when no determination is made that computersystem 700 has been forcibly tapped with external accessory device 790(e.g., or vice-versa), computer system 700 remains in the locked state.While FIGS. 11A-11D describe an alternative authentication method thatinvolves rotating external accessory device 790, one or more otheralternative authentication methods can require tapping the computersystem 700 with the external accessory device 790 (e.g., orvice-require) in other ways, such as requiring that the respectivedevices be tapped a predetermined number of times, requiring that therespective devices be tapped with vary levels of intensities (e.g., hardtap followed by a softer tap).

FIGS. 12A-12D illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.In particular, FIGS. 12A-12D are provided to show an alternativeauthentication method that can be used in conjunction with and/or inlieu of the alternative authentication methods described herein inrelation to FIGS. 7E-7H, FIGS. 8A-8D, FIGS. 9A-9D, FIGS. 10A-10D, FIGS.11A-11D, and FIGS. 13A-13F. The alternative authentication methoddescribed below in relation to FIGS. 12A-12D can be swapped out and/orincluded with the alternative authentication method described above inrelation to FIGS. 7A-7V (e.g., tap on watch to unlock). The alternativeauthentication method described in relation to FIGS. 12A-12D involvessqueezing earbud 1200 (e.g., an external accessory device). While FIGS.12A-12D involves squeezing earbud 1200, it should be understood thatother external accessory devices (e.g., external accessory device 790)can also be squeezed as an alternative authentication method.

As illustrated in FIG. 12A, user 760 is holding computer system 700while wearing mask 728, external accessory device 790, and earbud 1200.At FIG. 12B, computer system 700 displays notification 714, whichindicates that a message from John Appleseed has been received. At FIG.12B, computer system 700 detects upward swipe input 1250 b. At FIG. 12B,in response to detecting upward swipe input 1250 b, computer system 700initiates a biometric authentication process and determines that fullbiometric authentication is unsuccessful and partial biometricauthentication is successful (e.g., as indicated by indication 788 b,“PARTIAL MATCH DETECTED”) based on upper portion 760 a being captured bybiometric sensor 704 (e.g., for similar reasons as described above inrelation to FIG. 7F).

As illustrated in FIG. 12C, because the full biometric authentication isunsuccessful, computer system 700 remains in the locked state (e.g., asindicated by lock indicator 712 a, for similar reasons as describedabove in relation to FIG. 7G). As illustrated in FIG. 12C, computersystem 700 displays prompt 1244 because computer system 700 determinedthat full biometric authentication is unsuccessful and partial biometricauthentication is successful (e.g., for similar reasons as describedabove in relation to displaying prompt 734 in FIG. 7G). Prompt 1244indicates that an alternative method can be used to perform the secureoperation. In particular, prompt 1244 indicates that earbud 1200 willneed to be squeezed before computer system 700 can be unlocked. In someembodiments, earbud 1200 outputs an audible prompt that indicates thatan alternative method can be used to perform the secure operation (e.g.,that earbud 1200 will need to be squeezed before computer system 700 canbe unlocked).

At FIG. 12D, squeeze input 1250 d is detected on earbud 1200. In someembodiments, in response to the detection of squeeze input 1250 d,computer system 700 is transitioned from the locked state to an unlockedstate (e.g., similar to the transition described above in relation toFIG. 7H). In some embodiments, when no squeeze input is detected,computer system 700 remains in the locked state. While FIGS. 12A-12Ddescribe an alternative authentication method that involves squeezingearbud 1200, one or more other alternative authentication methods canrequire interacting with external accessory devices in other ways, suchas requiring a particular earbud to be squeezed (e.g., right earbud,left earbud) a particular amount of times (1-5 times) and/or for apredetermined amount of time (5-30 seconds), requiring a set of externalaccessory devices to be squeezed in a certain sequence (e.g., squeezeright earbud, squeeze left earbud).

FIGS. 13A-13F illustrate exemplary user interfaces for providingauthentication at a computer system in accordance with some embodiments.In particular, FIGS. 13A-13F are provided to show an alternativeauthentication method that can be used in conjunction with and/or inlieu of the alternative authentication methods described herein inrelation to FIGS. 7E-7H, FIGS. 8A-8D, FIGS. 9A-9D, FIGS. 10A-10D, FIGS.11A-11D, and FIGS. 12A-12D. The alternative authentication methoddescribed below in relation to FIGS. 13A-13F can be swapped out and/orincluded with the alternative authentication method described above inrelation to FIGS. 7A-7V (e.g., tap on watch to unlock). The alternativeauthentication method described in relation to FIGS. 13A-13F involvessatisfying multiple authentication criteria (e.g., a confirmation input,following by a near-field communication input).

As illustrated in FIG. 13A, user 760 is holding computer system 700while wearing mask 728 and external accessory device 790. At FIG. 13B,computer system 700 displays notification 714, which indicates that amessage from John Appleseed has been received. At FIG. 13B, computersystem 700 detects upward swipe input 1350 b. At FIG. 13B, in responseto detecting upward swipe input 1350 b, computer system 700 initiates abiometric authentication process and determines that full biometricauthentication is unsuccessful and partial biometric authentication issuccessful (e.g., as indicated by indication 788 b, “PARTIAL MATCHDETECTED”) based on upper portion 760 a being captured by biometricsensor 704 (e.g., for similar reasons as described above in relation toFIG. 7F).

As illustrated in FIG. 13C, because the full biometric authentication isunsuccessful, computer system 700 remains in the locked state (e.g., asindicated by lock indicator 712 a, for similar reasons as describedabove in relation to FIG. 7G). As illustrated in FIG. 13C, computersystem 700 displays prompt 1344 because computer system 700 determinedthat full biometric authentication is unsuccessful and partial biometricauthentication is successful (e.g., for similar reasons as describedabove in relation to displaying prompt 734 in FIG. 7G). Prompt 1344indicates that an alternative method can be used to perform the secureoperation. In particular, prompt 1344 indicates that hardware button 702will need to be pressed before computer system 700 can be unlocked(e.g., “CONFIRM WITH SIDE BUTTON”). At FIG. 13C, computer system 700detects press input 1350 c.

As illustrated in FIG. 13D, in response to detecting press input 1350 c,computer system 700 updates prompt 1344 to indicate that computer system700 needs to be brought near external accessory device 790. In addition,external accessory device 790 displays prompt 1344, which provides asimilar indication as prompt 1394. As illustrated in FIGS. 13E-13F, user760 positions computer system 700 and external accessory device 790closer together. At FIG. 13E-13F, computer system 700 and externalaccessory device 790 communicate using a near-field communication (NFC)protocol. In some embodiment, when it is determined that computer system700 and external accessory device 790 have communicated via the NFCprotocol successfully, computer system 700 is transitioned to theunlocked state. In some embodiments, as a part of determining thatcomputer system 700 and external accessory device 790 have communicatedvia the NFC protocol successfully, a determination is made that computersystem 700 and external accessory device 790 have communicated andpassed certain verification parameters (such as verifying that computersystem 700 and external accessory device 790 are both associated withuser 760 and/or the same set of users). In some embodiments, when it isdetermined that computer system 700 and external accessory device 790have not communicated via the NFC protocol successfully, computer system700 remains in the locked state.

FIGS. 14A-14B are a flow diagram illustrating a method for providingauthentication at a computer system in accordance with some embodiments.Method 1400 is performed at a computer system (e.g., 100, 300, 500, 700)(e.g., a smartphone, a tablet) that is in communication with (e.g.,wirelessly or by wire; integrates or includes) one or more biometricsensors (e.g., 704) (e.g., a fingerprint sensor, a facial recognitionsensor (e.g., one or more depth sensors; one or more cameras (e.g., dualcameras, triple camera, quad cameras, etc.)) on the same side ordifferent sides of the computer system (e.g., a front camera, a backcamera)), an iris scanner) (e.g., is hidden or concealed), one or moreinput devices (e.g., 710, 702) (e.g., a touch-sensitive surface, anaccelerometer, a hardware button), and an external accessory device(e.g., 790) (e.g., an external peripheral device) (e.g., a computersystem (e.g., a wearable device ((e.g., a smartwatch, headphones,glasses)), a device that is external to (e.g., not physically linked toor connected to) the computer system, a device that is in communicationwith the computer system via a communication channel, a device with adisplay generation component and one or more input devices). Someoperations in method 1400 are, optionally, combined, the orders of someoperations are, optionally, changed, and some operations are,optionally, omitted.

As described below, method 1400 provides an intuitive way for providingauthentication at a computer system. The method reduces the cognitiveburden on a user for providing authentication at a computer system,thereby creating a more efficient human-machine interface. Forbattery-operated computing devices, enabling a user to provideauthentication at a computer system faster and more efficientlyconserves power and increases the time between battery charges.

The computer system (e.g., 700) receives (1402), via the one or moreinput devices (e.g., 702, 710), a request (e.g., 750 b, 750 f, 750 u,850 b, 950 b, 1050 b, 1150 b, 1250 b, 1350 b) to unlock the computersystem (and/or receiving a request to perform a secure operation withthe computer system (e.g., unlocking the computer system)) while thecomputer system is in a locked state (e.g., as indicated by 712 a)(e.g., a state where the computer system is locked and/or a state whereone or more functions of the computer system are not available withoutproviding authentication). In some embodiments, the request (e.g., asdescribed above in relation to FIGS. 7P-7S) is a request to authorize apayment with the computer system, download an application, authorize useof a secure credential with the computer system, access a restrictedapplication or restricted information with the computer system, and/orauto-fill information with the computer system.

In response to (1404) receiving the request (e.g., 750 b, 750 f, 750 u,850 b, 950 b, 1050 b, 1150 b, 1250 b, 1350 b) to unlock the computersystem (e.g., 700) (and/or, in some embodiments, in response to therequest to perform a secure operation (e.g., unlock operation, contentviewing operation, secure payment operation, a secure operation that areavailable to be performed when the first setting is enabled)): inaccordance with a determination that a first set of biometricidentification criteria is satisfied (e.g., as described above inrelation to FIGS. 7A-7D) (e.g., a set of criteria that is satisfied whenthe first portion of biometric feature is available to be captured andthe biometric data (e.g., that includes data corresponding to the firstportion of the biometric feature) satisfies a set of biometricauthentication criteria (e.g., a set of criteria that includes acriterion that is satisfied when the biometric data that includes afirst portion (e.g., 760 b) of biometric feature and a second portion(e.g., 760 a) of biometric feature sufficiently matches an authorizedbiometric profile)), wherein the first set of biometric identificationcriteria is satisfied when a detected biometric feature (e.g., 760 a,760 b) detected in conjunction with (e.g., in response to, detected witha predetermined time (e.g., 1-10 seconds) before/after the request isreceived) the request to unlock the computer system is consistent with(e.g., is determined to match and/or is determined to sufficiently match(e.g., within a confidence threshold level of 90-100%)) an enrolledbiometric feature, the computer system (e.g., 700) transitions (1406)the computer system (e.g., 700) from the locked state (e.g., asindicated by 712 a) to an unlocked state (e.g., as indicated by 712 b)(e.g., without outputting a prompt that indicates that one or moreinteractions with the external accessory device can be used to unlockthe computer system) (e.g., as described above in relation to FIGS.7A-7D); and in accordance with a determination that a second set ofbiometric identification criteria is satisfied (e.g., a set of criteriathat is satisfied when a first portion (e.g., 760 b) of a biometricfeature is not available to be captured and the biometric data (e.g.,that does not include data corresponding to the first portion of thebiometric feature) satisfies a set of biometric authentication criteria(e.g., a set of criteria that includes a criterion that is satisfiedwhen the biometric data that includes data corresponding to a secondportion (e.g., 760 a) of biometric feature but does not include datacorresponding to the first portion (e.g., 760 b) of the biometric datathat matches (e.g., sufficiently matches (e.g., within a certainconfidence threshold (e.g., above 90%) an authorized biometric profile))without satisfying the first set of biometric identification criteria(e.g., as described above in relation to FIGS. 7E-7H, FIGS. 8A-8D, FIGS.9A-9D, FIGS. 10A-10D, FIGS. 11A-11D, FIGS. 12A-12D, FIGS. 13A-13F),wherein the second set of biometric identification criteria is satisfiedwhen the detected biometric feature detected in conjunction with (e.g.,in response to, detected with a predetermined time (e.g., 1-10 seconds)before/after the request is received) the request (e.g., 750 b, 750 f,750 u, 850 b, 950 b, 1050 b, 1150 b, 1250 b, 1350 b) to unlock thecomputer system (e.g., 700) is partially consistent (e.g., at least aportion of the detected biometric feature is determined to match and/oris determined to sufficiently match (e.g., within a confidence thresholdlevel of 90-100%)) with an enrolled biometric feature, the computersystem causes (1408) an output (e.g., the computer system and/or anothercomputer system to output) of a prompt (e.g., 734, 744, 748, 766, 796,844, 944, 1044, 1094, 1144, 1194, 1244, 1344, 1394) (e.g., a visual,haptic, audio prompt) that indicates that one or more interactions(e.g., further interaction) with the external accessory device can beused (and, in some embodiments, are required) to unlock the computersystem (e.g., to perform the secure operation). In some embodiments, inresponse to receiving the request to unlock the computer system and inaccordance with a determination that a set of partial biometricidentification criteria are satisfied (e.g., as described above inrelation to FIGS. 7E-7H, FIGS. 8A-8D, FIGS. 9A-9D, FIGS. 10A-10D, FIGS.11A-11D, FIGS. 12A-12D, FIGS. 13A-13F), the computer system ismaintained in the locked state (e.g., as described above in relation toFIGS. 7E-7H, FIGS. 7P-7S, FIGS. 8A-8D, FIGS. 9A-9D, FIGS. 10A-10D, FIGS.11A-11D, FIGS. 12A-12D, FIGS. 13A-13F).

After causing (1410) the output of the prompt (e.g., 734, 744, 748, 766,796, 844, 944, 1044, 1094, 1144, 1194, 1244, 1344, 1394) (and while thecomputer is in the locked state and the second set of biometricidentification criteria are satisfied without satisfying the first setof biometric identification criteria): in accordance with adetermination that the one or more interactions (e.g., a tapping on theexternal accessory device, pressing a button on the external accessorydevice, moving/rotating the external accessory device, one or moreinteractions that satisfy a set of unlocking interaction criteria)(e.g., a physical interaction (e.g., on the external accessory device))(e.g., an interaction that does not cause the accessory device to matchdata (e.g., data corresponding to a passcode, password, biometric data)received via the interaction to match authorized data (e.g., datacorresponding to a passcode, password, biometric data) that was set uppreviously using the external accessory device) with the externalaccessory device have been detected (e.g., detected within apredetermined time), the computer system (e.g., 700) transitions (1412)the computer system (e.g., 700) from the locked state to the unlockedstate (and/or, in some embodiments, when the request is a request toauthorize a payment with the computer system, authorize use of a securecredential with the computer system, access a restricted application orrestricted information with the computer system, and/or auto-fillinformation with the computer system, performing the respectiverequested operation) (e.g., as described above in relation to FIGS.7E-7H, FIGS. 7P-7S, FIGS. 8A-8D, FIGS. 9A-9D, FIGS. 10A-10D, FIGS.11A-11D, FIGS. 12A-12D, FIGS. 13A-13F); and in accordance with adetermination that the one or more interactions with the externalaccessory device (e.g., 790) have not been detected (e.g., within thepredetermined time), the computer system maintains (1414) the computersystem in the locked state (and/or, in some embodiments, when therequest is a request to authorize a payment with the computer system,authorize use of a secure credential with the computer system, access arestricted application or restricted information with the computersystem, and/or auto-fill information with the computer system, forgoingperforming the respective requested operation) (e.g., as described abovein relation to FIGS. 7E-7H, FIGS. 7P-7S, FIGS. 8A-8D, FIGS. 9A-9D, FIGS.10A-10D, FIGS. 11A-11D, FIGS. 12A-12D, FIGS. 13A-13F). Choosing whetheror not to transition the computer system from the locked state to theunlocked state based on whether one or more interactions with theexternal accessory device have been detected (e.g., after adetermination is made that a second set of biometric identificationcriteria is satisfied without satisfying a first set of biometricidentification criteria) allows the computer system to limitunauthorized performance of unlocking the computer system whileproviding an additional way to authorize the unlocking of the computersystem and improves security because the user is more likely to keep thesecurity features enabled if they are less disruptive to use of thecomputer system. Providing improved security reduces the unauthorizedperformance of secure operations which, additionally, reduces powerusage and improves battery life of the computer system by enabling theuser to use the computer system more securely and efficiently. Causingan output of a prompt indicating that one or more interactions with theexternal accessory device can be used to unlock the computer systemprovides the user with feedback about the current state of theauthentication process and informs the user of an action that is neededto complete the authentication process and automatically surfaces arelevant function to improve the user-machine interface. Providingimproved user feedback and automatically surfaces a relevant function toimprove the user-machine interface enhances the operability of thecomputer system and makes the user-system interface more efficient(e.g., by helping the user to provide proper inputs and reducing usermistakes when operating/interacting with the computer system) which,additionally, reduces power usage and improves battery life of thesystem by enabling the user to use the computer system more quickly andefficiently.

In some embodiments, after transitioning the computer system (e.g., 700)from the locked state to the unlocked state, the computer system (e.g.,700) receives, via the one or more input devices, a request (e.g., 750b, 750 f, 750 u, 850 b, 950 b, 1050 b, 1150 b, 1250 b, 1350 b) toperform a secure operation (e.g., other than unlocking the computersystem, the request is a request to authorize a payment with thecomputer system, authorize use of a secure credential with the computersystem, access a restricted application or restricted information withthe computer system, and/or auto-fill information with the computersystem). In some embodiments, in response to receiving the request toperform the secure operation (e.g., 750 b, 750 f, 750 u, 850 b, 950 b,1050 b, 1150 b, 1250 b, 1350 b): in accordance with a determination thatthe first set of biometric identification criteria is satisfied, thecomputer system (e.g., 700) performs the secure operation (e.g.,initiating the performance of the secure operation) (e.g., as describedabove in relation to FIGS. 7E-7H, FIGS. 7P-7S, FIGS. 8A-8D, FIGS. 9A-9D,FIGS. 10A-10D, FIGS. 11A-11D, FIGS. 12A-12D, FIGS. 13A-13F); and inaccordance with a determination that the second set of biometricidentification criteria are satisfied without satisfying the first setof biometric identification criteria, the computer system (e.g., 700)causes a second output of a second prompt (e.g., 734, 744, 748, 766,796, 844, 944, 1044, 1094, 1144, 1194, 1244, 1344, 1394) that indicatesthat a second one or more interactions with the external accessorydevice can be used to perform the secure operation; and after causingthe second output of the second prompt (e.g., 734, 744, 748, 766, 796,844, 944, 1044, 1094, 1144, 1194, 1244, 1344, 1394) (and while the hasnot performed the secure operation and the second set of biometricidentification criteria are satisfied without satisfying the first setof biometric identification criteria): in accordance with adetermination that the second one or more interactions with the externalaccessory device has been detected, the computer system (e.g., 700)performs the secure operation (e.g., as described above in relation toFIGS. 7E-7H, FIGS. 7P-7S, FIGS. 8A-8D, FIGS. 9A-9D, FIGS. 10A-10D, FIGS.11A-11D, FIGS. 12A-12D, FIGS. 13A-13F); and in accordance with adetermination that the second one or more interactions with the externalaccessory device (e.g., 790) have not been detected, the computer system(e.g., 700) forgoes performing the secure operation (e.g., as describedabove in relation to FIGS. 7E-7H, FIGS. 7P-7S, FIGS. 8A-8D, FIGS. 9A-9D,FIGS. 10A-10D, FIGS. 11A-11D, FIGS. 12A-12D, FIGS. 13A-13F). In someembodiments, the second prompt is different from (or the same as) theprompt. In some embodiments, the second one or more interactions aredifferent (or the same as) the one or more interactions. Choosingwhether or not to perform a secure operation based on whether one ormore interactions with the external accessory device have been detected(e.g., after a determination is made that a second set of biometricidentification criteria is satisfied without satisfying a first set ofbiometric identification criteria) allows the computer system to limitunauthorized performance of the secure operation while providing anadditional way to authorize the performance of the secure operation andimproves security because the user is more likely to keep the securityfeatures enabled if they are less disruptive to use of the computersystem. Providing improved security reduces the unauthorized performanceof secure operations which, additionally, reduces power usage andimproves battery life of the computer system by enabling the user to usethe computer system more securely and efficiently. Causing a secondoutput of a second prompt indicating that one or more interactions withthe external accessory device can be used to perform a secure operationprovides the user with feedback about the current state of theauthentication process and informs the user of an action that is neededto complete the authentication process and automatically surfaces arelevant function to improve the user-machine interface. Providingimproved user feedback and automatically surfaces a relevant function toimprove the user-machine interface enhances the operability of thecomputer system and makes the user-system interface more efficient(e.g., by helping the user to provide proper inputs and reducing usermistakes when operating/interacting with the computer system) which,additionally, reduces power usage and improves battery life of thesystem by enabling the user to use the computer system more quickly andefficiently.

In some embodiments, the second set of biometric identification criteriaincludes a criterion that is satisfied when a gaze of a user (e.g., 790)directed toward a predetermined portion of the computer system (e.g.,700) (e.g., the display, a particular portion (e.g., an upper portion)of the user interface, etc.) has been detected (e.g., as described abovein relation to FIGS. 7E-7H) (e.g., via the one or more biometric sensors(e.g., one or more cameras)) (e.g., for a predetermined period of time(e.g., 1-3 seconds)) (e.g., after the request to unlock the computersystem was received) (e.g., a gaze of a user looking in the direction ofthe computer system). In some embodiments, in response to receiving therequest to unlock the computer, the computer system detects the gaze ofthe user (and a determination is made as to whether the gaze of the userhas been detected and/or captured for a predetermined period of time).In some embodiments, the second set of biometric identification criteriais not satisfied when a gaze of a user is detected to be looking awayfrom the computer system for a predetermined period of time. In someembodiments, the second set of biometric identification criteria issatisfied when a gaze of a user is detected (or determined) to belooking at the computer system for a predetermined period of time.Causing the output of the prompt indicating that one or moreinteractions with the external accessory device can be used to unlockthe computer system when the gaze of a user has been detected for apredetermined time automatically limits the display of the prompt, sorelevant information is surface when a determination is made that theuser is intended to complete biometric identification, which providesimproved security. Providing improved user feedback and automaticallysurfaces a relevant function to improve the user-machine interfaceenhances the operability of the computer system and makes theuser-system interface more efficient (e.g., by helping the user toprovide proper inputs and reducing user mistakes whenoperating/interacting with the computer system) which, additionally,reduces power usage and improves battery life of the system by enablingthe user to use the computer system more quickly and efficiently.

In some embodiments, the computer system (e.g., 700) is in communicationwith a first output device (e.g., 710) (e.g., a display generationcomponent (e.g., a display generation component (e.g., a display, atouch-sensitive display) of the computer system), a speaker, one or morehaptic output devices). In some embodiments, causing the output of theprompt (e.g., 734, 744, 748, 766, 796, 844, 944, 1044, 1094, 1144, 1194,1244, 1344, 1394) (e.g., an audio, haptic, and/or visual prompt)includes outputting the prompt via the first output device (e.g., 710).In some embodiments, as a part of outputting the prompt (e.g., 734, 744,748, 766, 796, 844, 944, 1044, 1094, 1144, 1194, 1244, 1344, 1394) viathe first output device (e.g., 710), the computer system (e.g., 700)displays, via the display generation component, the prompt (e.g., 734,744, 748, 766, 796, 844, 944, 1044, 1094, 1144, 1194, 1244, 1344, 1394).In some embodiments, as a part of outputting the prompt via the firstoutput device, the computer system plays, via one or more speakers,audio. In some embodiments, as a part of outputting the prompt via thefirst output device, the computer system vibrates. Displaying, via thecomputer system, the prompt indicating that one or more interactionswith the external accessory device can be used to unlock the computersystem provides the user with feedback about the current state of theauthentication process at the computer system and informs the user of anaction that is needed to complete the authentication process andautomatically surfaces a relevant function to improve the user-machineinterface. Providing improved user feedback and automatically surfaces arelevant function to improve the user-machine interface enhances theoperability of the computer system and makes the user-system interfacemore efficient (e.g., by helping the user to provide proper inputs andreducing user mistakes when operating/interacting with the computersystem) which, additionally, reduces power usage and improves batterylife of the system by enabling the user to use the computer system morequickly and efficiently.

In some embodiments, causing the output of the prompt (e.g., 734, 744,748, 766, 796, 844, 944, 1044, 1094, 1144, 1194, 1244, 1344, 1394)(e.g., an audio, haptic, and/or visual prompt) includes transmitting(e.g., sending) (e.g., indirectly transmitting (e.g., via one or moreservers), directly transmitting (e.g., from the computer system directlyto the external accessory device (e.g., without the use of anintermediate computer system)) one or more instructions that cause theexternal accessory device (e.g., 790) to output (e.g., via a display;via a haptic output device; via an audio output device) the prompt. Insome embodiments, as a part of causing the output of the prompt thatindicates that one or more interactions with the external accessorydevice (e.g., 790) can be used to unlock the computer system, thecomputer system (e.g., 700) concurrently displays, via the displaygeneration component, a first prompt (e.g., 734, 744, 748, 766, 844,944, 1044, 1144, 1244, 1344) that corresponds to the prompt andtransmits one or more instructions that cause the external accessorydevice to display a second prompt (e.g., 796, 1094, 1194, 1394) thatcorresponds to the prompt. In some embodiments, the first prompt (e.g.,734, 744, 748, 766, 844, 944, 1044, 1144, 1244, 1344) is different(e.g., has a different appearance (e.g., size, shape, color), hasdifferent words/graphical indicators, has a different number ofwords/graphical indicators) from the second prompt (e.g., 796, 1094,1194, 1394). In some embodiments, the first prompt is the same as thesecond prompt. Displaying, via the external accessory device, the promptindicating that one or more interactions with the external accessorydevice can be used to unlock the computer system provides the user withfeedback about the current state of the authentication process at theexternal accessory device and informs the user of an action that isneeded to complete the authentication process and automatically surfacesa relevant function to improve the user-machine interface. Providingimproved user feedback and automatically surfaces a relevant function toimprove the user-machine interface enhances the operability of thecomputer system and makes the user-system interface more efficient(e.g., by helping the user to provide proper inputs and reducing usermistakes when operating/interacting with the computer system) which,additionally, reduces power usage and improves battery life of thesystem by enabling the user to use the computer system more quickly andefficiently.

In some embodiments, the computer system (e.g., 700) is not a wearabledevice (e.g., the computer system is a phone, tablet, laptop, desktop)(e.g., the computer system is not a device that is designed (e.g.,manufactured to be without the use of a third-party attachmentmechanism) to be (or can be) worn as an accessory, or embedded inclothing).

In some embodiments, the external accessory device (e.g., 790) is awearable device (e.g., a watch, headphones) (e.g., the computer systemis a device that is designed (e.g., manufactured to be without the useof a third-party attachment mechanism) to be (or can be) worn as anaccessory, or embedded in clothing).

In some embodiments, the enrolled biometric feature includes datacorresponding to a face (e.g., 760 a, 760 b, 760 c) (e.g., a portion ofa face of a user (e.g., a user with a profile that has been enrolled(e.g., set up) on the computer system)) or a fingerprint (e.g., portionof a finger of a user, a user with a profile that has been enrolled(e.g., set up) on the computer system). In some embodiments, the firstset of biometric identification criteria and the second set of biometricidentification criteria are sets of face identification criteria (e.g.,biometric criteria based on the detected face of a user (e.g., matching(and/or authenticating using) data corresponding to the detected face ofa user and data corresponding to an enrolled face a user)). In someembodiments, the first set of biometric identification criteria and thesecond set of biometric identification criteria are sets of fingerprintidentification criteria (e.g., biometric criteria based on the detectedface of a user (e.g., matching (and/or authenticating using) datacorresponding to the detected face of a user and data corresponding toan enrolled face a user)).

In some embodiments, the one or more interactions include a gesture(e.g., 750 g, 750 r) (e.g., a tap gesture) (and, in some embodiments, anon-tap gesture (e.g., a press-and-hold gesture, a cover gesture (e.g.,a gesture that is detected to cover more than a threshold portion (e.g.,50-70%) of external accessory (e.g., 790) and/or the display generationcomponent of the external accessory device) on a touch-sensitive surfaceof the external accessory device (e.g., on a display generationcomponent of the external accessory device). Transitioning the computersystem from the locked state to the unlocked state in accordance with adetermination that one or more interactions that include a gesture onthe external accessory device have been detected provides the user withmore control over the computer system by allowing a user to authenticateusing a particular action. Providing the user with more control of thecomputer system enhances the operability of the computer system andmakes the user-system interface more efficient (e.g., by helping theuser to provide proper inputs and reducing user mistakes whenoperating/interacting with the computer system) which, additionally,reduces power usage and improves battery life of the system by enablingthe user to use the computer system more quickly and efficiently.Transitioning the computer system from the locked state to the unlockedstate in accordance with a determination that one or more interactionsthat include a gesture on the external accessory device have beendetected improves security by requiring a particular interaction withthe external accessory device to be completed because the computersystem is unlocked. Providing improved security reduces the unauthorizedperformance of secure operations which, additionally, reduces powerusage and improves battery life of the computer system by enabling theuser to use the computer system more securely and efficiently.

In some embodiments, the one or more interactions include actuation(e.g., 950 d) of (e.g., via a pressing input/gesture) a hardware inputelement (e.g., 792) (e.g., a physical button, a knob, a slider) (e.g.,crown of watch, one or more physical buttons on the side, back, and/orfront of the external accessory device) that is located on the externalaccessory device (e.g., 790). In some embodiments, the one or moreinteractions include a rotational input directed to a hardware inputelement (e.g., as described above in relation to FIGS. 9A-9D).Transitioning the computer system from the locked state to the unlockedstate in accordance with a determination that one or more interactionsthat include a pressure gesture directed to a hardware input elementthat is located on the external accessory device have been detectedprovides the user with more control over the computer system by allowinga user to authenticate using a particular action. Providing the userwith more control of the computer system enhances the operability of thecomputer system and makes the user-system interface more efficient(e.g., by helping the user to provide proper inputs and reducing usermistakes when operating/interacting with the computer system) which,additionally, reduces power usage and improves battery life of thesystem by enabling the user to use the computer system more quickly andefficiently. Transitioning the computer system from the locked state tothe unlocked state in accordance with a determination that one or moreinteractions that include a pressure gesture directed to a hardwareinput element that is located on the external accessory device have beendetected improves security by requiring a particular interaction withthe external accessory device to be completed because the computersystem is unlocked. Providing improved security reduces the unauthorizedperformance of secure operations which, additionally, reduces powerusage and improves battery life of the computer system by enabling theuser to use the computer system more securely and efficiently.

In some embodiments, the one or more interactions include a compressinggesture (e.g., 1250 d) (e.g., a squeezing gesture, a force-basedgesture, or activation of a physical button) (e.g., a gesture that isdetected to be above a threshold level of force) on (e.g., around aportion of, on a surface of) the external accessory device (e.g., 790)(e.g., squeezing or pressing a portion of a set of headphones, ear buds,such as a pattern of squeezing a stem of an earbud or pressing a buttonof a pair of headphones (e.g., a single squeeze/press, a longsqueeze/press, multiple squeezes and/or presses, any combinationthereof, etc.). Transitioning the computer system from the locked stateto the unlocked state in accordance with a determination that one ormore interactions that include a force gesture on the external accessorydevice has been detected provides the user with more control over thecomputer system by allowing a user to authenticate using a particularaction. Providing the user with more control of the computer systemenhances the operability of the computer system and makes theuser-system interface more efficient (e.g., by helping the user toprovide proper inputs and reducing user mistakes whenoperating/interacting with the computer system) which, additionally,reduces power usage and improves battery life of the system by enablingthe user to use the computer system more quickly and efficiently.Transitioning the computer system from the locked state to the unlockedstate in accordance with a determination that one or more interactionsthat include a force gesture on the external accessory device has beendetected improves security by requiring a particular interaction withthe external accessory device to be completed because the computersystem is unlocked. Providing improved security reduces the unauthorizedperformance of secure operations which, additionally, reduces powerusage and improves battery life of the computer system by enabling theuser to use the computer system more securely and efficiently.

In some embodiments, the one or more interactions include the computersystem and the external accessory device transmitting data (e.g.,connecting, communicating) via a near-field communication protocol(e.g., as described above in relation to FIGS. 13A-13F). Transitioningthe computer system from the locked state to the unlocked state inaccordance with a determination that one or more interactions thatinclude the computer system and the external accessory devicetransmitting data via a near-field communication protocol has beendetected provides the user with more control over the computer system byallowing a user to authenticate using a particular action. Providing theuser with more control of the computer system enhances the operabilityof the computer system and makes the user-system interface moreefficient (e.g., by helping the user to provide proper inputs andreducing user mistakes when operating/interacting with the computersystem) which, additionally, reduces power usage and improves batterylife of the system by enabling the user to use the computer system morequickly and efficiently. Transitioning the computer system from thelocked state to the unlocked state in accordance with a determinationthat one or more interactions that include the computer system and theexternal accessory device transmitting data via a near-fieldcommunication protocol has been detected improves security by requiringa particular interaction with the external accessory device to becompleted because the computer system is unlocked. Providing improvedsecurity reduces the unauthorized performance of secure operationswhich, additionally, reduces power usage and improves battery life ofthe computer system by enabling the user to use the computer system moresecurely and efficiently.

In some embodiments, the one or more interactions include a firstinteraction (e.g., 750 q, 1350 c) that is detected by the one or moreinput devices (e.g., 702) of the computer system (e.g., 700) (e.g., agesture (e.g., double press gesture, rotating gesture) directed to(e.g., on) a hardware input element (e.g., a physical button, a knob, aslider), a gesture (e.g., a tap gesture) (and, in some embodiments, anon-tap gesture (e.g., a swipe gesture, a press-and-hold gesture)directed to the display generation component of the computer system)(e.g., an authorization gesture) and a second interaction (e.g., 750 r)detected at the external accessory device (and, in some embodiments, thesecond interaction is not detected at or on the computer system) (e.g.,a force gesture on the external accessory device, a pressing gesturedirected to a hardware input element of the external accessory device,near-field communication between the computer system and the externalaccessory device). In some embodiments, in accordance with adetermination that the second interaction is detected before (or after)the first interaction is detected (and/or the second interaction isdetected without the first interaction being detected), the computersystem is not transitioned from being in the locked state to theunlocked state. In some embodiments, in accordance with a determinationthat the first interaction is detected before (e.g., within apredetermined period of time before (e.g., 1-60 seconds) (or after) thesecond interaction is detected), the computer system is transitionedfrom the locked state to the unlocked state. In some embodiments, inaccordance with a determination that the first interaction and thesecond interaction are concurrently detected, the computer system istransitioned from being in the locked state to the unlocked state. Insome embodiments, in accordance with a determination that the firstinteraction and the second interaction are not concurrently detected,the computer system is not transitioned from being in the locked stateto the unlocked state. Transitioning the computer system from the lockedstate to the unlocked state in accordance with a determination that oneor more interactions that include a first interaction that includes agesture on the computer system and the second interaction on theexternal accessory device have been detected provides the user with morecontrol over the computer system by allowing a user to authenticateusing a particular action. Providing the user with more control of thecomputer system enhances the operability of the computer system andmakes the user-system interface more efficient (e.g., by helping theuser to provide proper inputs and reducing user mistakes whenoperating/interacting with the computer system) which, additionally,reduces power usage and improves battery life of the system by enablingthe user to use the computer system more quickly and efficiently.Transitioning the computer system from the locked state to the unlockedstate in accordance with a determination that one or more interactionsthat include a first interaction that includes a gesture on the computersystem and the second interaction on the external accessory device havebeen detected improves security by requiring a particular interactionwith the external accessory device to be completed because the computersystem is unlocked. Providing improved security reduces the unauthorizedperformance of secure operations which, additionally, reduces powerusage and improves battery life of the computer system by enabling theuser to use the computer system more securely and efficiently.

In some embodiments, the one or more interactions is an interaction thatis detected when a determination is made that the computer system (e.g.,700) and the external accessory device (e.g., 790) have physicallytouched (e.g., as described above in relation FIGS. 11A-11D) (and/or arephysically touching) (e.g., collided, have been tapped together, havebeen pushed together, etc.) (e.g., the computer system being tapphysically by the external accessory device, or vice-versa). In someembodiments, the determination is made that the computer system and theexternal accessory device have physically touched based on accelerometerdata (e.g., timed accelerometer data, accelerometer data that wasdetected within a threshold period of time (e.g., 10-60 seconds) afterthe request to unlock the computer system was received) and/or audiodata detected by the computer system and/or the external accessorydevice (e.g., based on comparing accelerometer data and/or audio datadetected by the computer system and the external accessory device, basedon individually analyzing the accelerometer data and/or audio datadetected by the computer system and the external accessory device). Insome embodiments, the one or more interactions include voice input.Transitioning the computer system from the locked state to the unlockedstate in accordance with a determination that one or more interactionsthat include an interaction that is detected when a determination ismade that the computer system and the external accessory device havephysically touched has been detected provides the user with more controlover the computer system by allowing a user to authenticate using aparticular action. Providing the user with more control of the computersystem enhances the operability of the computer system and makes theuser-system interface more efficient (e.g., by helping the user toprovide proper inputs and reducing user mistakes whenoperating/interacting with the computer system) which, additionally,reduces power usage and improves battery life of the system by enablingthe user to use the computer system more quickly and efficiently.Transitioning the computer system from the locked state to the unlockedstate in accordance with a determination that one or more interactionsthat include an interaction that is detected when a determination ismade that the computer system and the external accessory device havephysically touched have been detected improves security by requiring aparticular interaction with the external accessory device to becompleted because the computer system is unlocked. Providing improvedsecurity reduces the unauthorized performance of secure operationswhich, additionally, reduces power usage and improves battery life ofthe computer system by enabling the user to use the computer system moresecurely and efficiently.

In some embodiments, the one or more interactions include a motiongesture (e.g., 1050 d) (e.g., one or more wrist raise gestures (e.g.,lifting gestures), one or more wrist rotation gestures (e.g., 1050 d)(and, in some embodiments, detected via a gyroscope and/oraccelerometer) (e.g., a sequence of motions gestures (e.g., lift wristand rotate wrist left/right) that is performed with the externalaccessory device (e.g., 790). In some embodiments, the one or moreinteractions include a particular sequence of interactions. In someembodiments, the prompt indicates the sequence of gestures that arerequired to be performed. Transitioning the computer system from thelocked state to the unlocked state in accordance with a determinationthat one or more interactions that include a motion gesture that isperformed with the external accessory device have been detected providesthe user with more control over the computer system by allowing a userto authenticate using a particular action. Providing the user with morecontrol of the computer system enhances the operability of the computersystem and makes the user-system interface more efficient (e.g., byhelping the user to provide proper inputs and reducing user mistakeswhen operating/interacting with the computer system) which,additionally, reduces power usage and improves battery life of thesystem by enabling the user to use the computer system more quickly andefficiently. Transitioning the computer system from the locked state tothe unlocked state in accordance with a determination that one or moreinteractions that include a motion gesture that is performed with theexternal accessory device has been detected improves security byrequiring a particular interaction with the external accessory device tobe completed because the computer system is unlocked. Providing improvedsecurity reduces the unauthorized performance of secure operationswhich, additionally, reduces power usage and improves battery life ofthe computer system by enabling the user to use the computer system moresecurely and efficiently.

In some embodiments, in accordance with a determination that the secondset of biometric identification criteria and the first set of biometricidentification criteria are not satisfied, the computer system (e.g.,700) maintains the computer system in the locked state without causingthe output of the prompt (e.g., as described above in relation to FIGS.7T-7V). Maintaining the computer system in the locked state withoutcausing the output of the prompt in accordance with a determination thatthe second set of biometric identification criteria and the first set ofbiometric identification criteria are not satisfied allows the computersystem to limit unauthorized performance of secure operations, whichprovides improved security. Providing improved security reduces theunauthorized performance of secure operations which, additionally,reduces power usage and improves battery life of the computer system byenabling the user to use the computer system more securely andefficiently.

In some embodiments, in accordance with the determination that the oneor more interactions with the external accessory device (e.g., 790) havebeen detected, the computer system (e.g., 700) transitioning from thelocked state to the unlocked state includes: in accordance with adetermination that the detected one or more interactions with theexternal accessory device (e.g., 790) satisfy a set of respectivecriteria (e.g., the one or more match an enrolled profile of theinteraction (e.g., a voice interaction that matches an enrolled voiceabove a first range (e.g., 95%) satisfies the set of respectivecriteria, a voice interaction that matches an enrolled voice interfacebetween a second range (e.g., 70%-90%) does not satisfy the set ofrespective criteria (e.g., due to background noise), a connection vianear-filed communication that is able to remain connected for at least afirst predetermined threshold period of time (e.g., 5 seconds) satisfiesthe set of respective criteria, connection via near-filed communicationthat is able to remain connected for a second predetermined thresholdperiod of time (e.g., 3 seconds) but not a first predetermined thresholdperiod of time (e.g., 5 seconds) satisfies the set of respectivecriteria), the computer system provides (e.g., configuring the computersystem to provide) limited access privileges to a user of the computersystem (e.g., give user limited access (e.g., read-only access, noaccess to perform administrative operations and/or destructiveoperations (e.g., create operates, write operations, update operations,delete operations), no access to sensitive data and/or applications(e.g., and/or to certain data (e.g., passwords) and/or applications(e.g., password applications, payment applications, downloadapplication), and/or access to only a predetermined set of applicationsand/or operations, such as listening to music, web browsing, etc.)(e.g., in response to a request to access/perform one or moreoperations) (e.g., as described above in relation to FIGS. 7I-7O).

In some embodiments, in accordance with the determination that the oneor more interactions with the external accessory device have beendetected and in accordance with a determination that the detected one ormore interactions with the external accessory device do not satisfy theset of respective criteria, the computer system provides more than thelimited access privileges (e.g., more privileges than the limitedprivileges) (and, in some embodiments, full access privileges) to a userof the computer system (e.g., gives a user more than limited access(e.g., ability to perform one or more administrative operations and/ordestructive operations, one or more access to sensitive data and/orapplications, ability to access more than the predetermined set ofapplications) (e.g., as described above in relation to FIGS. 7I-7O). Insome embodiments, in accordance with a determination that the second setof biometric identification criteria and the first set of biometricidentification criteria are not satisfied, the computer system does notprovide the limited access privileges to the user of the computer system(and/or provides no access privileges to a user of the computer system)and does not provide more than the limited access privileges to the userof the computer system (e.g., as described above in relation to FIGS.7I-7O). In some embodiments, in accordance with a determination that afirst set of biometric identification criteria is satisfied and as apart of transitioning the computer system from the locked state to anunlocked state, the computer system provides more than the limitedaccess privileges (and, in some embodiments, full access privileges) toa user of the computer system (e.g., and in some embodiments, moreaccess privileges are provided in accordance with a determination that afirst set of biometric identification criteria is satisfied than thenumber access privileges provides in accordance with the determinationthat the one or more interactions with the external accessory devicehave been detected and in accordance with a determination that thedetected one or more interactions with the external accessory device donot satisfy the set of respective criteria (e.g., as described above inrelation to FIGS. 7I-7O). Providing limited access privileges to a userof the computer system in accordance with a determination that thedetected one or more interactions with the external accessory devicesatisfy a set of respective criteria provides a way for the user toperform some activities without ways for the user to perform otheractivities. Providing improved security reduces the unauthorizedperformance of secure operations which, additionally, reduces powerusage and improves battery life of the computer system by enabling theuser to use the computer system more securely and efficiently.

Note that details of the processes described above with respect tomethod 1400 (e.g., FIGS. 14A-14B) are also applicable in an analogousmanner to the methods described below. For example, method 1500optionally includes one or more of the characteristics of the variousmethods described above with reference to method 1400. For example,method 1400 can be combined with method 1500, such that when partialbiometric authentication is successful and full biometric authenticationis unsuccessful at method 1400, one or more steps of method 1500 can beused as an alternative authentication method to perform the secureoperation (e.g., unlock the computer system). For brevity, these detailsare not repeated below.

FIGS. 15A-15B are a flow diagram illustrating a method for providingauthentication at a computer system in accordance with some embodiments.Method 1500 is performed at a computer system (e.g., 100, 300, 500, 700)(e.g., a smartphone, a tablet) that is in communication with (e.g.,wirelessly or by wire; integrates or includes) one or more biometricsensors (e.g., 704) (e.g., a fingerprint sensor, a facial recognitionsensor (e.g., one or more depth sensors; one or more cameras (e.g., dualcameras, triple camera, quad cameras, etc.)) on the same side ordifferent sides of the computer system (e.g., a front camera, a backcamera)), an iris scanner) (e.g., is hidden or concealed) (and, in someembodiments, an external accessory device (e.g., an external peripheraldevice) (e.g., a computer system (e.g., a wearable device ((e.g., asmartwatch, headphones, glasses)), a device that is external to (e.g.,not physically linked to or connected to) the computer system, a devicethat is in communication with the computer system via a communicationchannel, a device with a display generation component and one or moreinput devices) and one or more input devices (e.g., 702, 710) (e.g., atouch-sensitive surface, an accelerometer, a hardware button) thatinclude a voice input device (e.g., a microphone). Some operations inmethod 1500 are, optionally, combined, the orders of some operationsare, optionally, changed, and some operations are, optionally, omitted.

As described below, method 1500 provides an intuitive way for providingauthentication at a computer system. The method reduces the cognitiveburden on a user for providing authentication at a computer system,thereby creating a more efficient human-machine interface. Forbattery-operated computing devices, enabling a user to provideauthentication at a computer system faster and more efficientlyconserves power and increases the time between battery charges.

The computer system receives (1502), via the one or more input devices(e.g., 702, 710), a request (e.g., 750 b, 750 f, 750 u, 850 b, 950 b,1050 b, 1150 b, 1250 b, 1350 b) to unlock the computer system while thecomputer system is in a locked state (e.g., as described above inrelation to method 1400 of CSI (e.g., step 1402)).

In response to (1504) receiving the request (e.g., 750 b, 750 f, 750 u,850 b, 950 b, 1050 b, 1150 b, 1250 b, 1350 b) to unlock the computersystem: in accordance with a determination that a first set of biometricidentification criteria is satisfied (e.g., a set of criteria that issatisfied when the first portion of biometric feature is available to becaptured and the biometric data (e.g., that includes data correspondingto the first portion of the biometric feature) satisfies a set ofbiometric authentication criteria (e.g., a set of criteria that includesa criterion that is satisfied when the biometric data that includes afirst portion of biometric feature and a second portion of biometricfeature sufficiently matches an authorized biometric profile)), whereinthe first set of biometric identification criteria is satisfied when adetected biometric feature detected in conjunction with (e.g., inresponse to, detected with a predetermined time (e.g., 1-10 seconds)before/after the request is received) the request to unlock the computersystem is consistent with (e.g., is determined to match and/or isdetermined to sufficiently match (e.g., within a confidence thresholdlevel of 90-100%)) an enrolled biometric feature, the computer system(e.g., 700) transitions (1506) the computer system from the locked state(e.g., as indicated by 712 a) to an unlocked state (e.g., as indicatedby 712 b) (e.g., without outputting a prompt that indicates that one ormore interactions with the external accessory device can be used tounlock the computer system) (e.g., as described above in relation toFIGS. 7E-7H, FIGS. 8A-8D, FIGS. 9A-9D, FIGS. 10A-10D, FIGS. 11A-11D,FIGS. 12A-12D, FIGS. 13A-13F).

In response to (1504) receiving the request (e.g., 750 b, 750 f, 750 u,850 b, 950 b, 1050 b, 1150 b, 1250 b, 1350 b) to unlock the computersystem: in accordance with a determination that a second set ofbiometric identification criteria is satisfied (e.g., a set of criteriathat is satisfied when a first portion of a biometric feature is notavailable to be captured and the biometric data (e.g., that does notinclude data corresponding to the first portion of the biometricfeature) satisfies a set of biometric authentication criteria (e.g., aset of criteria that includes a criterion that is satisfied when thebiometric data that includes data corresponding to a second portion ofbiometric feature but does not include data corresponding to the firstportion of the biometric data that matches (e.g., sufficiently matches(e.g., within a certain confidence threshold (e.g., above 90%) anauthorized biometric profile)) without satisfying the first set ofbiometric identification criteria, wherein the second set of biometricidentification criteria is satisfied when the detected biometric featuredetected in conjunction with (e.g., in response to, detected with apredetermined time (e.g., 1-10 seconds) before/after the request isreceived) the request to unlock the computer system is partiallyconsistent (e.g., at least a portion of the detected biometric featureis determined to match and/or is determined to sufficiently match (e.g.,within a confidence threshold level of 90-100/o)) with an enrolledbiometric feature, the computer system causes (1508) an output (e.g.,the computer system and/or another computer system to output) of aprompt (e.g., 844) (e.g., a visual, haptic, audio prompt) that indicatesthat voice input is required (and, in some embodiments, are required) tounlock the computer system (e.g., to perform the secure operation)(e.g., as described above in relation to FIGS. 7E-7H, FIGS. 8A-8D, FIGS.9A-9D, FIGS. 10A-10D, FIGS. 11A-11D, FIGS. 12A-12D, FIGS. 13A-13F). Insome embodiments, in response to receiving the request to unlock thecomputer system and in accordance with a determination that a set ofpartial biometric identification criteria are satisfied, the computersystem is maintained in the locked state.

After causing the output of the prompt (e.g., 844), the computer system(e.g., 700) receives (1510), via the voice input device, an indicationthat voice input has been detected. In some embodiments, as a part ofreceiving an indication that voice input has been detected, the computerdetects voice input via one or more microphones that are incommunication with and/or included in the computer system. In someembodiments, as a part of receiving the indication that voice input isdetected, the computer system receives an indication of whether thedetected voice input satisfies the voice profile for the user profileassociated with the computer system (e.g., as described above inrelation to FIGS. 8A-8D).

In response to (1512) receiving the indication that voice input (e.g.,850 d) has been detected (e.g., detected within a predetermined time)(and while the computer is in the locked state and the respectivecriteria continue to be met): in accordance with a determination thatthe detected voice input (e.g., 850 d) matches an authorized voiceprofile (e.g., matches a voice profile for a user associated with thecomputer system (e.g., 700) (e.g., a voice profile that is correspondsand/or belongs to with a user profile that is) associated with (e.g.,associated with a user profile that is stored on, corresponding to, auser profile that is configured to control the computer system)), thecomputer system (e.g., 700) transitions (1514) the computer system fromthe locked state (e.g., as indicated by 712 a) to the unlocked state(e.g., as indicated by 712 b) (e.g., performing the secure operation)(e.g., as described above in relation to FIGS. 8A-8D); and in accordancewith a determination that the detected voice input (e.g., 850 d) doesnot match the authorized voice profile, the computer system maintains(1416) the computer system in the locked state (e.g., forgoingperforming the secure operation) (e.g., as described above in relationto FIGS. 8A-8D). Choosing whether or not to transition the computersystem from the locked state to the unlocked state based on whether oneor more interactions with the external accessory device have beendetected (e.g., after a determination is made that a partial set ofbiometric identification criteria is satisfied) allows the computersystem to limit unauthorized performance of unlocking the computersystem while providing an additional way to authorize the unlocking ofthe computer system and improves security because the user is morelikely to keep the security features enabled if they are less disruptiveto use of the computer system. Providing improved security reduces theunauthorized performance of secure operations which, additionally,reduces power usage and improves battery life of the computer system byenabling the user to use the computer system more securely andefficiently. Causing an output of a prompt indicating that one or moreinteractions with the external accessory device can be used to unlockthe computer system provides the user with feedback about the currentstate of the authentication process and informs the user of an actionthat is needed to complete the authentication process and automaticallysurfaces a relevant function to improve the user-machine interface.Providing improved user feedback and automatically surfaces a relevantfunction to improve the user-machine interface enhances the operabilityof the computer system and makes the user-system interface moreefficient (e.g., by helping the user to provide proper inputs andreducing user mistakes when operating/interacting with the computersystem) which, additionally, reduces power usage and improves batterylife of the system by enabling the user to use the computer system morequickly and efficiently. Transitioning the computer system from thelocked state to the unlocked state in accordance with a determinationthat the physical biometric feature of the user satisfies the first setof biometric authentication criteria allows the computer system to limitunauthorized performance of unlocking the computer system whileproviding an additional way to authorize the unlocking of the computersystem and improves security because the user is more likely to keep thesecurity features enabled if they are less disruptive to use of thecomputer system. Providing improved security reduces the unauthorizedperformance of secure operations which, additionally, reduces powerusage and improves battery life of the computer system by enabling theuser to use the computer system more securely and efficiently.

In some embodiments, the one or more biometric sensors include one ormore microphones and the voice input (e.g., 850 d) is received when thevoice input is detected via the one or more microphones (e.g., asdescribed above in relation to FIGS. 8A-8D).

In some embodiments, in response to (1504) receiving the request (e.g.,750 b, 750 f, 750 u, 850 b, 950 b, 1050 b, 1150 b, 1250 b, 1350 b) tounlock the computer system: in accordance with a determination that thesecond set of biometric identification criteria and the first set ofbiometric identification criteria are not satisfied, the computer systemmaintains the computer system in the locked state without causing theoutput of the prompt (e.g., as described above in relation to method1400 and/or FIGS. 7T-7V and FIGS. 8A-8D). Maintaining the computersystem in the locked state without causing the output of the prompt inaccordance with a determination that the set of partial biometricidentification criteria and the first set of biometric identificationcriteria are not satisfied allows the computer system to limitunauthorized performance of secure operations, which provides improvedsecurity. Providing improved security reduces the unauthorizedperformance of secure operations which, additionally, reduces powerusage and improves battery life of the computer system by enabling theuser to use the computer system more securely and efficiently.

In some embodiments, the prompt (e.g., 844) includes an instruction torecite a predefined set of words (and/or other utterances) (e.g., asdescribed above in relation to FIGS. 8A-8D). In some embodiments, thepredefined set of words can be determined by the computer system. Insome embodiments, the predefined set of words are the same predefinedset of words. In some embodiments, the predefined set of words changesbased one or more criteria (e.g., time of day, environmental conditions,randomness, etc.). Having a prompt that includes an instruction torecite the predefined set of words provides the user with feedback aboutthe current state of the authentication process at the computer systemand informs the user of an action that is needed to complete theauthentication process and automatically surfaces a relevant function toimprove the user-machine interface. Providing improved user feedback andautomatically surfaces a relevant function to improve the user-machineinterface enhances the operability of the computer system and makes theuser-system interface more efficient (e.g., by helping the user toprovide proper inputs and reducing user mistakes whenoperating/interacting with the computer system) which, additionally,reduces power usage and improves battery life of the system by enablingthe user to use the computer system more quickly and efficiently.

In some embodiments, the second set of biometric identification criteriaincludes a criterion that is satisfied when a gaze of a user directedtoward a predetermined portion of the computer system (e.g., thedisplay, a particular portion (e.g., an upper portion) of the userinterface, etc.) has been detected (e.g., as described above in relationto method 1400 and/or FIGS. 7T-7V and FIGS. 8A-8D) (e.g., via the one ormore biometric sensors (e.g., one or more cameras)) (e.g., for apredetermined period of time (e.g., 1-3 seconds)) (e.g., after therequest to unlock the computer system was received) (e.g., a gaze of auser looking in the direction of the computer system) (e.g., using oneor more techniques as discussed above in relation to method 1400 and/orFIGS. 7E-7G). Causing the output of the prompt indicating that one ormore interactions with the external accessory device can be used tounlock the computer system when the gaze of a user has been detected fora predetermined time automatically limits the display of the prompt, sorelevant information is surface when a determination is made that theuser is intended to complete biometric identification, which providesimproved security. Providing improved user feedback and automaticallysurfaces a relevant function to improve the user-machine interfaceenhances the operability of the computer system and makes theuser-system interface more efficient (e.g., by helping the user toprovide proper inputs and reducing user mistakes whenoperating/interacting with the computer system) which, additionally,reduces power usage and improves battery life of the system by enablingthe user to use the computer system more quickly and efficiently.

In some embodiments in accordance with a determination that the detectedvoice input (e.g., 850) does not match the authorized voice profile(e.g., using one or more techniques as described above in relation toFIGS. 8A-8D), the computer system provides limited access privileges toa second user (e.g., the first user) of the computer system (e.g., usingone or more techniques as described above in relation to method 1400and/or FIGS. 7I-7O). In some embodiments, in accordance with adetermination that the detected voice input does match an authorizedvoice profile, the computer system provides more than the limited accessprivileges (e.g., more privileges than the limited privileges) (and, insome embodiments, full access privileges) to a user of the computersystem (e.g., gives a user more than limited access (e.g., ability toperform one or more administrative operations and/or destructiveoperations, one or more access to sensitive data and/or applications,ability to access more than the predetermined set of applications)(e.g., using one or more techniques as described above in relation tomethod 1400 and/or FIGS. 7I-7O). In some embodiments, in accordance witha determination that the partial set of biometric identificationcriteria and the full set of biometric identification criteria are notsatisfied, the computer system does not provide the limited accessprivileges to the user of the computer system (and/or provides no accessprivileges to a user of computer system) and does not provide more thanthe limited access privileges to the user of the computer system (e.g.,using one or more techniques as described above in relation to method1400 and/or FIGS. 7I-70 ). In some embodiments, in accordance with adetermination that a full set of biometric identification criteria issatisfied and as a part of transitioning the computer system from thelocked state to an unlocked state, the computer system provides morethan the limited access privileges (and, in some embodiments, fullaccess privileges) to a user of the computer system (e.g., and in someembodiments, one or more access privileges are provided in accordancewith a determination that a full set of biometric identificationcriteria is satisfied than the number access privileges provides inaccordance with a determination that the detected voice input does notmatch an authorized voice profile) (e.g., using one or more techniquesas described above in relation to method 1400 and/or FIGS. 7I-7O).Providing limited access privileges to a user of the computer system inaccordance with a determination that the detected voice input does notmatch an authorized voice profile provides a way for the user to performsome activities without ways for the user to perform other activities.Providing improved security reduces the unauthorized performance ofsecure operations which, additionally, reduces power usage and improvesbattery life of the computer system by enabling the user to use thecomputer system more securely and efficiently.

Note that details of the processes described above with respect tomethod 1500 (e.g., FIGS. 15A-15B) are also applicable in an analogousmanner to the methods described above. For example, method 1400optionally includes one or more of the characteristics of the variousmethods described above with reference to method 1500. For example,method 1500 can be combined with method 1400, such that when partialbiometric authentication is successful and full biometric authenticationis unsuccessful at method 1500, one or more steps of method 1400 can beused as an alternative authentication method to perform the secureoperation (e.g., unlock the computer system). For brevity, these detailsare not repeated below.

The foregoing description, for purpose of explanation, has beendescribed with reference to specific embodiments. However, theillustrative discussions above are not intended to be exhaustive or tolimit the invention to the precise forms disclosed. Many modificationsand variations are possible in view of the above teachings. Theembodiments were chosen and described in order to best explain theprinciples of the techniques and their practical applications. Othersskilled in the art are thereby enabled to best utilize the techniquesand various embodiments with various modifications as are suited to theparticular use contemplated.

Although the disclosure and examples have been fully described withreference to the accompanying drawings, it is to be noted that variouschanges and modifications will become apparent to those skilled in theart. Such changes and modifications are to be understood as beingincluded within the scope of the disclosure and examples as defined bythe claims.

One aspect of the present technology is the gathering and use of dataavailable from various sources to improve the ability of the computersystem to biometrically authenticate the user in order to authorize theperformance of secure operations that are initiated at the computersystem. The present disclosure contemplates that in some instances, thisgathered data may include personal information data that uniquelyidentifies or can be used to contact or locate a specific person. Suchpersonal information data can include demographic data, location-baseddata, telephone numbers, email addresses, twitter IDs, home addresses,data or records relating to a user's health or level of fitness (e.g.,vital signs measurements, medication information, exercise information),date of birth, or any other identifying or personal information.

The present disclosure recognizes that the use of such personalinformation data, in the present technology, can be used to the benefitof users. For example, the personal information data can be used toimprove the ability of the computer system to biometrically authenticatethe user. Accordingly, use of such personal information data enablesusers to have calculated control over the biometric data that the userhas shared with the computer system. Further, other uses for personalinformation data that benefit the user are also contemplated by thepresent disclosure. For instance, health and fitness data may be used toprovide insights into a user's general wellness, or may be used aspositive feedback to individuals using technology to pursue wellnessgoals.

The present disclosure contemplates that the entities responsible forthe collection, analysis, disclosure, transfer, storage, or other use ofsuch personal information data will comply with well-established privacypolicies and/or privacy practices. In particular, such entities shouldimplement and consistently use privacy policies and practices that aregenerally recognized as meeting or exceeding industry or governmentalrequirements for maintaining personal information data private andsecure. Such policies should be easily accessible by users, and shouldbe updated as the collection and/or use of data changes. Personalinformation from users should be collected for legitimate and reasonableuses of the entity and not shared or sold outside of those legitimateuses. Further, such collection/sharing should occur after receiving theinformed consent of the users. Additionally, such entities shouldconsider taking any needed steps for safeguarding and securing access tosuch personal information data and ensuring that others with access tothe personal information data adhere to their privacy policies andprocedures. Further, such entities can subject themselves to evaluationby third parties to certify their adherence to widely accepted privacypolicies and practices. In addition, policies and practices should beadapted for the particular types of personal information data beingcollected and/or accessed and adapted to applicable laws and standards,including jurisdiction-specific considerations. For instance, in the US,collection of or access to certain health data may be governed byfederal and/or state laws, such as the Health Insurance Portability andAccountability Act (HIPAA); whereas health data in other countries maybe subject to other regulations and policies and should be handledaccordingly. Hence different privacy practices should be maintained fordifferent personal data types in each country.

Despite the foregoing, the present disclosure also contemplatesembodiments in which users selectively block the use of, or access to,personal information data. That is, the present disclosure contemplatesthat hardware and/or software elements can be provided to prevent orblock access to such personal information data. For example, in the caseof biometric authentication, the present technology can be configured toallow users to select to “opt in” or “opt out” of participation in thecollection of personal information data during registration for servicesor anytime thereafter. In another example, users can select not toprovide biometric data for use in biometric authentication. In yetanother example, users can select to limit the type of biometric datathat is provided for biometric authentication and/or limit and/orentirely limit the computer system's use of biometric authenticationusing the biometric data from the user. In addition to providing “optin” and “opt out” options, the present disclosure contemplates providingnotifications relating to the access or use of personal information. Forinstance, a user may be notified upon downloading an app that theirpersonal information data will be accessed and then reminded again justbefore personal information data is accessed by the app.

Moreover, it is the intent of the present disclosure that personalinformation data should be managed and handled in a way to minimizerisks of unintentional or unauthorized access or use. Risk can beminimized by limiting the collection of data and deleting data once itis no longer needed. In addition, and when applicable, including incertain health related applications, data de-identification can be usedto protect a user's privacy. De-identification may be facilitated, whenappropriate, by removing specific identifiers (e.g., date of birth,etc.), controlling the amount or specificity of data stored (e.g.,collecting location data a city level rather than at an address level),controlling how data is stored (e.g., aggregating data across users),and/or other methods.

What is claimed is:
 1. A computer system that is in communication withone or more biometric sensors, one or more input devices, and anexternal accessory device, the computer system comprising: one or moreprocessors; and memory storing one or more programs configured to beexecuted by the one or more processors, the one or more programsincluding instructions for: receiving, via the one or more inputdevices, a request to unlock the computer system while the computersystem is in a locked state; in response to receiving the request tounlock the computer system: in accordance with a determination that afirst set of biometric identification criteria is satisfied, wherein thefirst set of biometric identification criteria is satisfied when adetected biometric feature detected in conjunction with the request tounlock the computer system is consistent with an enrolled biometricfeature, transitioning the computer system from the locked state to anunlocked state; and in accordance with a determination that a second setof biometric identification criteria is satisfied without satisfying thefirst set of biometric identification criteria, wherein the second setof biometric identification criteria is satisfied when the detectedbiometric feature detected in conjunction with the request to unlock thecomputer system is partially consistent with an enrolled biometricfeature, causing an output of a prompt that indicates that one or moreinteractions with the external accessory device can be used to unlockthe computer system; and after causing the output of the prompt: inaccordance with a determination that the one or more interactions withthe external accessory device have been detected, transitioning thecomputer system from the locked state to the unlocked state; and inaccordance with a determination that the one or more interactions withthe external accessory device have not been detected, maintaining thecomputer system in the locked state.
 2. The computer system of claim 1,the one or more programs further including instructions for: aftertransitioning the computer system from the locked state to the unlockedstate, receiving, via the one or more input devices, a request toperform a secure operation; in response to receiving the request toperform the secure operation: in accordance with a determination thatthe first set of biometric identification criteria is satisfied,performing the secure operation; and in accordance with a determinationthat the second set of biometric identification criteria are satisfiedwithout satisfying the first set of biometric identification criteria,causing a second output of a second prompt that indicates that a secondone or more interactions with the external accessory device can be usedto perform the secure operation; and after causing the second output ofthe second prompt: in accordance with a determination that the secondone or more interactions with the external accessory device have beendetected, performing the secure operation; and in accordance with adetermination that the second one or more interactions with the externalaccessory device have not been detected, forgoing performing the secureoperation.
 3. The computer system of claim 1, wherein the second set ofbiometric identification criteria includes a criterion that is satisfiedwhen a gaze of a user directed toward a predetermined portion of thecomputer system has been detected.
 4. The computer system of claim 1,wherein: the computer system is in communication with a first outputdevice; and causing the output of the prompt includes outputting theprompt via the first output device.
 5. The computer system of claim 1,wherein causing the output of the prompt includes transmitting one ormore instructions that cause the external accessory device to output theprompt.
 6. The computer system of claim 1, wherein the computer systemis not a wearable device.
 7. The computer system of claim 1, wherein theexternal accessory device is a wearable device.
 8. The computer systemof claim 1, wherein the enrolled biometric feature includes datacorresponding to a face or a fingerprint.
 9. The computer system ofclaim 1, wherein the one or more interactions include a gesture on atouch-sensitive surface of the external accessory device.
 10. Thecomputer system of claim 1, wherein the one or more interactions includeactuation of a hardware input element that is located on the externalaccessory device.
 11. The computer system of claim 1, wherein the one ormore interactions include a compressing gesture on the externalaccessory device.
 12. The computer system of claim 1, wherein the one ormore interactions include the computer system and the external accessorydevice transmitting data via a near-field communication protocol. 13.The computer system of claim 1, wherein the one or more interactionsinclude a first interaction that is detected by the one or more inputdevices of the computer system and a second interaction detected at theexternal accessory device.
 14. The computer system of claim 1, whereinthe one or more interactions is an interaction that is detected when adetermination is made that the computer system and the externalaccessory device have physically touched.
 15. The computer system ofclaim 1, wherein the one or more interactions include a motion gesturethat is performed with the external accessory device.
 16. The computersystem of claim 1, the one or more programs further includinginstructions for: in accordance with a determination that the second setof biometric identification criteria and the first set of biometricidentification criteria are not satisfied, maintaining the computersystem in the locked state without causing the output of the prompt. 17.The computer system of claim 1, wherein, in accordance with thedetermination that the one or more interactions with the externalaccessory device have been detected, transitioning the computer systemfrom the locked state to the unlocked state includes: in accordance witha determination that the one or more interactions with the externalaccessory device satisfy a set of respective criteria, providing limitedaccess privileges to a user of the computer system.
 18. A non-transitorycomputer-readable storage medium storing one or more programs configuredto be executed by one or more processors of a computer system that is incommunication with one or more biometric sensors, one or more inputdevices, and an external accessory device, the one or more programsincluding instructions for: receiving, via the one or more inputdevices, a request to unlock the computer system while the computersystem is in a locked state; in response to receiving the request tounlock the computer system: in accordance with a determination that afirst set of biometric identification criteria is satisfied, wherein thefirst set of biometric identification criteria is satisfied when adetected biometric feature detected in conjunction with the request tounlock the computer system is consistent with an enrolled biometricfeature, transitioning the computer system from the locked state to anunlocked state; and in accordance with a determination that a second setof biometric identification criteria is satisfied without satisfying thefirst set of biometric identification criteria, wherein the second setof biometric identification criteria is satisfied when the detectedbiometric feature detected in conjunction with the request to unlock thecomputer system is partially consistent with an enrolled biometricfeature, causing an output of a prompt that indicates that one or moreinteractions with the external accessory device can be used to unlockthe computer system; and after causing the output of the prompt: inaccordance with a determination that the one or more interactions withthe external accessory device have been detected, transitioning thecomputer system from the locked state to the unlocked state; and inaccordance with a determination that the one or more interactions withthe external accessory device have not been detected, maintaining thecomputer system in the locked state.
 19. A method, comprising: at acomputer system that is in communication with one or more biometricsensors, one or more input devices, and an external accessory device:receiving, via the one or more input devices, a request to unlock thecomputer system while the computer system is in a locked state; inresponse to receiving the request to unlock the computer system: inaccordance with a determination that a first set of biometricidentification criteria is satisfied, wherein the first set of biometricidentification criteria is satisfied when a detected biometric featuredetected in conjunction with the request to unlock the computer systemis consistent with an enrolled biometric feature, transitioning thecomputer system from the locked state to an unlocked state; and inaccordance with a determination that a second set of biometricidentification criteria is satisfied without satisfying the first set ofbiometric identification criteria, wherein the second set of biometricidentification criteria is satisfied when the detected biometric featuredetected in conjunction with the request to unlock the computer systemis partially consistent with an enrolled biometric feature, causing anoutput of a prompt that indicates that one or more interactions with theexternal accessory device can be used to unlock the computer system; andafter causing the output of the prompt: in accordance with adetermination that the one or more interactions with the externalaccessory device have been detected, transitioning the computer systemfrom the locked state to the unlocked state; and in accordance with adetermination that the one or more interactions with the externalaccessory device have not been detected, maintaining the computer systemin the locked state.